0.002 Low
EPSS
Percentile
52.3%
The WP Booking System plugin 1.5.1 for WordPress has no CSRF protection, which allows attackers to reach certain SQL injection issues that require administrative access.
dumpco.re/bugs/wp-plugin-wp-booking-system-sqli
wordpress.org/plugins/wp-booking-system/#developers
wpvulndb.com/vulnerabilities/9284