CVE-2021-24461: 
WordPress vulnerability analysis and mitigation

The FAQ Builder AYS WordPress plugin before version 1.3.6 contained a SQL injection vulnerability identified as CVE-2021-24461. The vulnerability was discovered in the getfaqs() function, which failed to properly validate or whitelist the orderby parameter in SQL statements passed to getresults() DB calls. This security issue was publicly disclosed on June 29, 2021, affecting the admin dashboard of WordPress installations using the vulnerable plugin versions (WPScan).

The vulnerability is classified as a SQL injection (CWE-89) with a CVSS v3.1 base score of 8.8 (HIGH), characterized by the vector CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. The issue specifically affects the orderby parameter in the plugin's admin interface, which lacked proper input validation. The vulnerability could be exploited through both GET and POST requests to sort items in the plugin menu (NVD, WPScan).

The vulnerability allows authenticated users with access to the admin dashboard to perform SQL injection attacks, potentially leading to unauthorized access to the database, data manipulation, and exposure of sensitive information. The high CVSS score indicates significant potential impact on the confidentiality, integrity, and availability of the affected system (NVD).

The vulnerability was fixed in FAQ Builder AYS version 1.3.6. Users are strongly advised to update to this version or later to mitigate the risk. No alternative workarounds have been documented (WPScan).