CVE-2024-3605 — AI Deep Analysis Summary

🚨 **Essence**: Unauthenticated SQL Injection in WP Hotel Booking. <br>💥 **Consequences**: Attackers can extract sensitive database info. Critical data breach risk. CVSS Score is High (9.8).

🛡️ **Root Cause**: CWE-89 (SQL Injection). <br>🔍 **Flaw**: Insufficient escaping of user input. Lack of prepared statements in SQL queries. Specifically affects the `room_type` parameter.

🏢 **Affected**: WordPress Plugin: **WP Hotel Booking**. <br>📦 **Versions**: 2.1.0 and earlier. <br>🏭 **Vendor**: Thimpress.

🕵️ **Hackers Can**: Append malicious SQL queries. <br>📂 **Data Access**: Extract sensitive information from the database. <br>🔓 **Privileges**: Unauthenticated access required. No login needed.

⚡ **Threshold**: LOW. <br>🔑 **Auth**: None required (Unauthenticated). <br>🌐 **Access**: Via REST API endpoint `/wphb/v1/rooms/search-rooms`. Easy to trigger.

💻 **Public Exp?**: YES. <br>📂 **PoC Available**: GitHub repo by RandomRobbieBF. <br>🔎 **Scanner**: Nuclei templates exist. Wild exploitation is feasible.

🔍 **Self-Check**: Scan for WP Hotel Booking plugin. <br>📡 **Target**: Check REST API endpoint `/wphb/v1/rooms/search-rooms`. <br>🧪 **Test**: Inject SQL via `room_type` parameter. Use automated scanners like Nuclei.

🩹 **Official Fix**: YES. <br>📢 **Update**: Upgrade to version > 2.1.0. <br>🔗 **Source**: WordPress.org plugin repository. Check vendor site for latest patch.

🚧 **No Patch?**: Disable the plugin immediately. <br>🚫 **Block**: Restrict access to `/wphb/v1/rooms/search-rooms` via WAF. <br>🛑 **Mitigate**: Input validation on server side if plugin must stay.

🔥 **Urgency**: CRITICAL. <br>⏰ **Priority**: Patch IMMEDIATELY. <br>⚠️ **Risk**: High CVSS (9.8). Unauthenticated. Active exploits exist. Data at high risk.