Lucene search
PatchstackCVE-2024-30510HistoryMar 29, 2024 - 2:15 p.m.
CVE-2024-30510
2024-03-2914:15:14
CWE-434
Patchstack
web.nvd.nist.gov
34
cve-2024-30510
vulnerability
file upload
salon booking system
CVSS3
10
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
9.4
Confidence
High
EPSS
0
Percentile
9.0%
Unrestricted Upload of File with Dangerous Type vulnerability in Salon Booking System Salon booking system.This issue affects Salon booking system: from n/a through 9.5.
Affected configurations
Node
salon_booking_systemsalon_booking_systemRange≤9.5wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| salon_booking_system | salon_booking_system | * | cpe:2.3:a:salon_booking_system:salon_booking_system:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "salon-booking-system",
"product": "Salon booking system",
"vendor": "Salon Booking System",
"versions": [
{
"changes": [
{
"at": "9.5.1",
"status": "unaffected"
}
],
"lessThanOrEqual": "9.5",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-30510
2024-03-29 14:15:14
cvelist
cvelist
vulnrichment
vulnrichment
wpvulndb
wpvulndb
Salon booking system < 9.5.1 - Unauthenticated Arbitrary File Upload
2024-04-03 00:00:00
wordfence
wordfence
CVSS3
10
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
9.4
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2024-30510