4 matches found
CVE-2024-12274
The Appointment Booking Calendar Plugin and Scheduling Plugin WordPress plugin before 1.1.23 export settings functionality exports data to a public folder, with an easily guessable file name, allowing unauthenticated attackers to access the exported files if they exist...
CVE-2024-12274
creationtimestamp| type| source ---|---|--- 2025-01-13 06:05:08+00:00| seen| https://infosec.exchange/users/cve/statuses/113819537120398503 2025-01-13 06:06:04+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1354 2025-01-13 06:10:25+00:00| seen|...
CVE-2024-12274 BookingPress < 1.1.23 - Unauthenticated Export File Download
The Appointment Booking Calendar Plugin and Scheduling Plugin WordPress plugin before 1.1.23 export settings functionality exports data to a public folder, with an easily guessable file name, allowing unauthenticated attackers to access the exported files if they exist...
CVE-2024-12274 BookingPress < 1.1.23 - Unauthenticated Export File Download
The Appointment Booking Calendar Plugin and Scheduling Plugin WordPress plugin before 1.1.23 export settings functionality exports data to a public folder, with an easily guessable file name, allowing unauthenticated attackers to access the exported files if they exist...