CVE-2024-33543

Missing Authorization vulnerability in CodePeople WP Time Slots Booking Form.This issue affects WP Time Slots Booking Form: from n/a through 1.2.06...

CVE-2024-33543

Missing Authorization vulnerability in CodePeople WP Time Slots Booking Form.This issue affects WP Time Slots Booking Form: from n/a through 1.2.06...

PT-2024-25310 · Codepeople · Codepeople Wp Time Slots Booking Form

Name of the Vulnerable Software and Affected Versions: CodePeople WP Time Slots Booking Form versions 1.2.06 and earlier Description: The issue is related to a Missing Authorization vulnerability in the CodePeople WP Time Slots Booking Form. This vulnerability may allow unauthorized access...

WordPress plugin WP Time Slots Booking Form security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability exis...

WordPress WP Time Slots Booking Form plugin <= 1.2.06 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin WP Time Slots Booking Form versions = 1.2.06...

WordPress WP Time Slots Booking Form Plugin <= 1.2.06 is vulnerable to Broken Access Control

Software WP Time Slots Booking Form Type Plugin Vulnerable versions = 1.2.06 Fixed in 1.2.07 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-33543 Patch priority Low CVSS severity Low 7.5 Developer Claim ownership PSID caafd19bb673 Credits Joshua Chan...

CVE-2008-3748

Active PHP Bookmarks (APB) versions 1.1.02 and 1.2.06 are affected by a SQL injection in view_group.php, exploitable via the id parameter to allow remote arbitrary SQL execution. The vulnerability is documented with a CVSSv2 base score of 7.5 (HIGH) with network attack vector, no authentication, ...