Yicheng Liu

**Name of the Vulnerable Software and Affected Versions** Advanced Booking Calendar WordPress plugin versions prior to 1.7.1 **Description** The issue is related to the lack of sanitization and escaping of the `id` parameter when editing Calendars. This could allow high-privilege users, such as admins, to perform SQL injection attacks. **Recommendations** For versions prior to 1.7.1, update to version 1.7.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the Calendar editing feature to minimize the risk of exploitation. Avoid using the `id` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Advanced Booking Calendar WordPress plugin versions prior to 1.7.1 **Description** The issue is related to a Reflected Cross-Site Scripting problem. It occurs because the `room` parameter is not properly sanitised and escaped before being outputted back in an admin page. This allows for malicious scripts to be injected and executed. **Recommendations** For versions prior to 1.7.1, update to version 1.7.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the admin page where the `room` parameter is outputted to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** One Click Demo Import WordPress plugin versions prior to 3.1.0 **Description** The issue allows high privilege users, such as admins, to upload arbitrary files, including PHP files, even when FILE MODS and FILE EDIT are disallowed, due to a lack of validation of the imported file. **Recommendations** For versions prior to 3.1.0, update to version 3.1.0 or later to resolve the issue. As a temporary workaround, consider restricting the `FILE MODS` and `FILE EDIT` permissions to minimize the risk of exploitation. Additionally, restrict access to the file import functionality to prevent high privilege users from uploading arbitrary files.

**Name of the Vulnerable Software and Affected Versions** Podcast Importer SecondLine WordPress plugin versions prior to 1.3.8 **Description** The issue is related to the improper sanitization and escaping of some imported data, which could allow SQL injection attacks to be performed by importing a malicious podcast file. This could potentially lead to unauthorized access or manipulation of database content. **Recommendations** For versions prior to 1.3.8, update to version 1.3.8 or later to resolve the issue. As a temporary workaround, consider restricting the import of podcast files from untrusted sources to minimize the risk of exploitation.