7 matches found
CVE-2024-53815
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in DOTonPAPER Pinpoint Booking System booking-system allows Blind SQL Injection.This issue affects Pinpoint Booking System: from n/a through = 2.9.9.5.1...
CVE-2024-53815 WordPress Pinpoint Booking System plugin <= 2.9.9.5.2 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in DOTonPAPER Pinpoint Booking System booking-system allows Blind SQL Injection.This issue affects Pinpoint Booking System: from n/a through = 2.9.9.5.1...
CVE-2024-53815
CVE-2024-53815 concerns the Pinpoint Booking System WordPress plugin (versions up to 2.9.9.5.1) and is described as an SQL Injection vulnerability resulting from improper neutralization of input elements. The CVE entry lists a CVSS v3.1 base score of 8.5 (High) with network access, requiring low ...
WordPress plugin Pinpoint Booking System 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...
WordPress plugin Pinpoint Booking System 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forgery...
PT-2024-33443 · Unknown · Pinpoint Booking System
Name of the Vulnerable Software and Affected Versions: Pinpoint Booking System versions through 2.9.9.5.1 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that also allows Stored XSS in the Pinpoint Booking System. Recommendations: For versions through 2.9.9.5.1, at the...
WordPress Pinpoint Booking System Plugin <= 2.9.9.5.0 is vulnerable to SQL Injection
Software Pinpoint Booking System Type Plugin Vulnerable versions = 2.9.9.5.0 Fixed in 2.9.9.5.1 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-7112 Patch priority High CVSS severity High 8.5 Developer Claim ownership PSID 3f6ddfc5c651 Credits Piotr Kuśpit Required privilege...