3 matches found
CVE-2017-2150
Directory traversal vulnerability in Booking Calendar version 7.0 and earlier allows remote attackers to read arbitrary files via specially crafted captchachalange parameter...
CVE-2017-2150
Directory traversal vulnerability in Booking Calendar version 7.0 and earlier allows remote attackers to read arbitrary files via specially crafted captchachalange parameter...
CVE-2017-2150
The CVE-2017-2150 entry concerns the WordPress plugin Booking Calendar (versions 7.0 and earlier). Affected component: the Booking Calendar plugin’s captcha_chalange handling. Root cause: directory traversal vulnerability that enables a remote attacker to read arbitrary files by crafting the inpu...