Added CVE-2024-1207 template

[Monst3rSec]

Booking Calendar <= 9.9 - Unauthenticated SQL Injection

The WP Booking Calendar plugin for WordPress is vulnerable to SQL Injection via the 'calendar_request_params[dates_ddmmyy_csv]' parameter in all versions up to, and including, 9.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

• References:
  • https://www.wordfence.com/threat-intel/vulnerabilities/id/7802ed1f-138c-4a3d-916c-80fb4f7699b2?source=cve
  • https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3032596%40booking&new=3032596%40booking&sfp_email=&sfph_mail=

Template Validation

I've validated this template locally?

• [x] YES
• [ ] NO

Additional Details (leave it blank if not applicable)

Additional References:

• Nuclei Template Creation Guideline
• Nuclei Template Matcher Guideline
• Nuclei Template Contribution Guideline
• PD-Community Discord server

[GeorginaReeder]

Thanks for your contribution @Monst3rSec , we really appreciate it!

[ritikchaddha]

Hello @Monst3rSec,

Thank you for sharing the template with us. We appreciate the effort you have put into creating it. However, at the moment we cannot add templates that detect vulnerabilities based on version detection. Please update the template with a working exploit.

Thank you for understanding.

[Monst3rSec]

Hi @DhiyaneshGeek,

Due to the unavailability of a reliable working exploit, reproducing the issue has become difficult. Therefore, I have opted to validate the CVE-2024-1207 by conducting version checks.

I kindly request the collaboration of both the community and the nuclei team in addressing this template.

Thanks.