Lucene search
HistorySep 29, 2015 - 7:59 p.m.
CVE-2015-7319
cve-2015-7319
sql injection
cpabc_appointments_admin_int_calendar_list.inc.php
appointment booking calendar plugin
wordpress
remote attack
arbitrary sql commands
nvd
9.7 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
49.6%
SQL injection vulnerability in cpabc_appointments_admin_int_calendar_list.inc.php in the Appointment Booking Calendar plugin before 1.1.8 for WordPress allows remote attackers to execute arbitrary SQL commands via unspecified vectors related to updating the username.
| CPE | Name | Operator | Version |
|---|---|---|---|
| codepeople:appointment_booking_calendar | codepeople appointment booking calendar | le | 1.1.7 |
Related
patchstack
patchstack
WordPress Appointment Booking Calendar Plugin <= 1.1.7 - SQL Injection
2015-09-22 00:00:00
cvelist
cvelist
CVE-2015-7319
2015-09-29 19:00:00
CVE-2016-10916
2019-08-22 12:11:21
securityvulns
securityvulns
prion
prion
Sql injection
2015-09-29 19:59:00
Sql injection
2019-08-22 13:15:00
zdt
zdt
WordPress Appointment Booking Calendar 1.1.7 SQL Injection Vulnerability
2015-10-06 00:00:00
cve
cve
CVE-2016-10916
2019-08-22 13:15:00
wpvulndb
wpvulndb
9.7 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
49.6%
Related for CVE-2015-7319