CVE-2024-0405

HIGH

Burst Statistics < 1.5.3 - Authenticated SQL Injection via JSON Parameters in Data Compare Endpoint

Title source: llm
STIX 2.1

Description

The Burst Statistics – Privacy-Friendly Analytics for WordPress plugin, version 1.5.3, is vulnerable to Post-Authenticated SQL Injection via multiple JSON parameters in the /wp-json/burst/v1/data/compare endpoint. Affected parameters include 'browser', 'device', 'page_id', 'page_url', 'platform', and 'referrer'. This vulnerability arises due to insufficient escaping of user-supplied parameters and the lack of adequate preparation in SQL queries. As a result, authenticated attackers with editor access or higher can append additional SQL queries into existing ones, potentially leading to unauthorized access to sensitive information from the database.

Scores

CVSS v3 7.2
EPSS 0.0062
EPSS Percentile 45.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-89
Status published
Products (2)
burst-statistics/burst_statistics < 1.5.3
burstbv/Burst Statistics – Privacy-Friendly WordPress Analytics (Google Analytics Alternative) < 1.5.3
Published Jan 17, 2024
Tracked Since Feb 18, 2026