Lucene search

CVE-2024-6175

🗓️ 18 Jul 2024 02:03:15Reported by WordfenceType

The Booking Ultra Pro Appointments Booking Calendar Plugin for WordPress is vulnerable to unauthorized data modificatio

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
Cvelist	CVE-2024-6175 Booking Ultra Pro <= 1.1.13 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Updates	18 Jul 202402:03	–	cvelist
Patchstack	WordPress Booking Ultra Pro Plugin <= 1.1.13 is vulnerable to Broken Access Control	17 Jul 202400:00	–	patchstack
NVD	CVE-2024-6175	18 Jul 202402:15	–	nvd
RedhatCVE	CVE-2024-6175	23 May 202508:02	–	redhatcve
Vulnrichment	CVE-2024-6175 Booking Ultra Pro <= 1.1.13 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Updates	18 Jul 202402:03	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (July 15, 2024 to July 21, 2024)	25 Jul 202414:49	–	wordfence

Vulners

Node

deetronix booking_ultra_pro_appointments_booking_calendar_pluginRange≤1.1.13wordpress

[
  {
    "vendor": "deetronix",
    "product": "Booking Ultra Pro Appointments Booking Calendar Plugin",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "1.1.13",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/0594ed62-0a41-4819-89b8-ea31afbcac73
wordpress	www.wordpress.org/plugins/booking-ultra-pro/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

18 Jul 2024 02:15Current

5.5Medium risk

Vulners AI Score5.5

CVSS35.4

EPSS0.00116

SSVC