CVE-2024-32128 Scanner

The WordPress Realtyna Organic IDX Plugin is primarily used by real estate professionals and businesses who integrate property listings into their WordPress websites. This plugin enables website owners to present an organized and searchable list of real estate properties directly on their site, leveraging IDX integration for comprehensive listings. It is widely adopted by agencies seeking to provide users with the ability to search property databases through filters and customized search queries. The plugin is also utilized for enhancing user experience by allowing dynamic property searches with specific criteria. Moreover, it helps automate real estate listing processes, making it indispensable for large-scale agencies. The Realtyna Organic IDX Plugin is part of a suite of tools focused on real estate management and marketing efficiency.

The SQL Injection vulnerability affects the Realtyna Organic IDX Plugin up to version 4.14.4 by not properly sanitizing input parameters in its SQL queries. This severe security flaw permits unauthenticated users to manipulate database queries, enabling them to extract sensitive information without proper authorization. Attackers can exploit this vulnerability to append unauthorized SQL statements to queries, posing a risk of data exposure or alteration. SQL Injection can compromise the backend database, allowing for confidential data theft or even complete control of the database system. This vulnerability arises from improper validation and escaping of user inputs, a common issue in dynamic SQL query construction. Therefore, it poses a high risk to any site employing this plugin without adequate input validation practices.

In the Realtyna Organic IDX Plugin, the vulnerable endpoint involves improper escaping of user-supplied parameters in the database query functions, particularly when handling 'wpl_format' and 'wpl_function' parameters in GET requests. This improper input handling allows appending malicious SQL code, evidenced by injecting a sleep delay or extracting sensitive fields through union-based SQL Injection. The flaw is mainly due to the lack of prepared statements, leading to unsafe query execution under specific parsing logic in the plugin's backend processes. Examples show SQL payloads successfully delaying response times or accessing unauthorized information. Such outcomes highlight the attacker's ability to utilize this endpoint as a launch point for structured query manipulation, endangering site integrity and security.

Exploiting the SQL Injection vulnerability in the Realtyna Organic IDX Plugin can have severe consequences, such as unauthorized data access, data theft, or complete database compromise by hackers. Attackers may retrieve sensitive user data, manipulate database records, or even delete essential data, leading to legal liabilities and loss of trust. It could further allow for shell access through RDBMS interactions, escalating it to full server compromise. Prolonged exploitation may enable attackers to implant backdoors or overwrite administrative credentials, granting privileged access across the system. This highlights the need for immediate patching and application of security best practices to mitigate potential damages.

REFERENCES

• https://nvd.nist.gov/vuln/detail/CVE-2024-32128
• https://patchstack.com/database/wordpress/plugin/real-estate-listing-realtyna-wpl/vulnerabilities