Lucene search

K
prionPRIOn knowledge basePRION:CVE-2022-0739
HistoryMar 21, 2022 - 7:15 p.m.

Sql injection

2022-03-2119:15:00
PRIOn knowledge base
www.prio-n.com
25

9.7 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.2%

The BookingPress WordPress plugin before 1.0.11 fails to properly sanitize user supplied POST data before it is used in a dynamically constructed SQL query via the bookingpress_front_get_category_services AJAX action (available to unauthenticated users), leading to an unauthenticated SQL Injection

CPENameOperatorVersion
bookingpresslt1.0.11

9.7 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.2%