Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/02/04 10:21 p.m.7 views

CVE-2024-53815

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in DOTonPAPER Pinpoint Booking System booking-system allows Blind SQL Injection.This issue affects Pinpoint Booking System: from n/a through = 2.9.9.5.1...

8.5CVSS7.3AI score0.00502EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/06 1:5 p.m.18 views

CVE-2024-53815 WordPress Pinpoint Booking System plugin <= 2.9.9.5.2 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in DOTonPAPER Pinpoint Booking System booking-system allows Blind SQL Injection.This issue affects Pinpoint Booking System: from n/a through = 2.9.9.5.1...

8.5CVSS0.00502EPSS
Exploits0References1
CVE
CVE
added 2024/12/06 1:5 p.m.57 views

CVE-2024-53815

CVE-2024-53815 concerns the Pinpoint Booking System WordPress plugin (versions up to 2.9.9.5.1) and is described as an SQL Injection vulnerability resulting from improper neutralization of input elements. The CVE entry lists a CVSS v3.1 base score of 8.5 (High) with network access, requiring low ...

8.5CVSS7.3AI score0.00502EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/06 12:0 a.m.5 views

WordPress plugin Pinpoint Booking System 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...

8.5CVSS8.8AI score0.00502EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/17 12:0 a.m.6 views

WordPress plugin Pinpoint Booking System 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forgery...

5.4CVSS6.6AI score0.00164EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/17 12:0 a.m.6 views

PT-2024-33443 · Unknown · Pinpoint Booking System

Name of the Vulnerable Software and Affected Versions: Pinpoint Booking System versions through 2.9.9.5.1 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that also allows Stored XSS in the Pinpoint Booking System. Recommendations: For versions through 2.9.9.5.1, at the...

5.4CVSS6.2AI score0.00164EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/09/09 12:0 a.m.13 views

WordPress Pinpoint Booking System Plugin <= 2.9.9.5.0 is vulnerable to SQL Injection

Software Pinpoint Booking System Type Plugin Vulnerable versions = 2.9.9.5.0 Fixed in 2.9.9.5.1 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-7112 Patch priority High CVSS severity High 8.5 Developer Claim ownership PSID 3f6ddfc5c651 Credits Piotr Kuśpit Required privilege...

8.8CVSS6.8AI score0.00508EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder