Lucene search

[email protected]NVD:CVE-2024-6467

HistoryJul 17, 2024 - 7:15 a.m.

CVE-2024-6467

2024-07-1707:15:03

[email protected]

web.nvd.nist.gov

bookingpress plugin

wordpress

arbitrary file read

arbitrary file creation

authenticated attackers

php code

sensitive information

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

19.7%

JSON

The BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin plugin for WordPress is vulnerable to Arbitrary File Read to Arbitrary File Creation in all versions up to, and including, 1.1.5 via the ‘bookingpress_save_lite_wizard_settings_func’ function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to create arbitrary files that contain the content of files on the server, allowing the execution of any PHP code in those files or the exposure of sensitive information.

Affected configurations

Nvd

Node

reputeinfosystemsbookingpressRange<1.1.6wordpress

VendorProductVersionCPE
reputeinfosystemsbookingpress*cpe:2.3:a:reputeinfosystems:bookingpress:*:*:*:*:*:wordpress:*:*

Vendor	Product	Version	CPE
reputeinfosystems	bookingpress	*	cpe:2.3:a:reputeinfosystems:bookingpress::::::wordpress::*

References

plugins.trac.wordpress.org/changeset/3116857/bookingpress-appointment-booking/trunk/core/classes/class.bookingpress.php

www.wordfence.com/threat-intel/vulnerabilities/id/d0177510-cd7d-4cc5-96c3-78433aa0e3f6?source=cve

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

19.7%

JSON

Related for NVD:CVE-2024-6467

vulnrichment1 cvelist1 cve1 wordfence2 thn1