Lucene search
K

65 matches found

Positive Technologies
Positive Technologies
added 2024/09/07 12:0 a.m.3 views

PT-2024-37963 · WordPress · Truebooker

Name of the Vulnerable Software and Affected Versions: The TrueBooker WordPress plugin versions prior to 1.0.3 Description: The issue is related to the lack of a CSRF check when updating settings in the plugin. This could allow attackers to make a logged-in admin change settings via a CSRF attack...

4.3CVSS6.5AI score0.00214EPSS
Exploits1References6
Patchstack
Patchstack
added 2024/08/15 3:8 a.m.4 views

WordPress TrueBooker plugin <= 1.0.2 - Multiple Unauthenticated SQLi vulnerability

Multiple Unauthenticated SQLi vulnerability discovered by Project Black in WordPress Plugin TrueBooker versions = 1.0.2...

9.8CVSS7AI score0.03292EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2024/08/15 3:7 a.m.4 views

WordPress TrueBooker plugin <= 1.0.2 - Settings Update via CSRF vulnerability

Settings Update via CSRF vulnerability discovered by Bob Matyas in WordPress Plugin TrueBooker versions = 1.0.2...

4.3CVSS7AI score0.00214EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2024/08/15 12:0 a.m.9 views

WordPress TrueBooker Plugin <= 1.0.2 is vulnerable to SQL Injection

Software TrueBooker Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-6924 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID bf0618e9b2e8 Credits Project Black Required privilege Unauthenticated...

9.8CVSS6.8AI score0.03292EPSS
Exploits1References4Affected Software1
Patchstack
Patchstack
added 2024/08/15 12:0 a.m.11 views

WordPress TrueBooker Plugin <= 1.0.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software TrueBooker Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-6925 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 6cf1cde3d661 Credits Bob Matyas Required privile...

4.3CVSS6.7AI score0.00214EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder