Lucene search
PRIOn knowledge basePRION:CVE-2023-1129HistoryApr 24, 2023 - 7:15 p.m.
Design/Logic Flaw
2023-04-2419:15:00
PRIOn knowledge base
www.prio-n.com
2
wordpress
flaw
logic
security
user authentication
booking
0.001 Low
EPSS
Percentile
23.5%
The WP FEvents Book WordPress plugin through 0.46 does not ensures that bookings to be updated belong to the user making the request, allowing any authenticated user to book, add notes, or cancel booking on behalf of other users.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wp_fevents_book | le | 0.46 |
Related
cve
cve
CVE-2023-1129
2023-04-24 19:15:09
nvd
nvd
CVE-2023-1129
2023-04-24 19:15:09
wpvulndb
wpvulndb
cvelist
cvelist
wpexploit
wpexploit
wordfence
wordfence