Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:41 a.m.8 views

CVE-2018-20556

SQL injection vulnerability in Booking Calendar plugin 8.4.3 for WordPress allows remote attackers to execute arbitrary SQL commands via the bookingid parameter...

8.8CVSS8.8AI score0.18906EPSS
Exploits5References1
Check Point Advisories
Check Point Advisories
added 2022/11/28 12:0 a.m.48 views

WordPress Booking Calendar Plugin SQL Injection (CVE-2018-20556)

A command execution vulnerability exists in WordPress Plugin Booking Calendar . Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

6.5CVSS5.5AI score0.18906EPSS
Exploits5
NVD
NVD
added 2019/03/21 4:0 p.m.33 views

CVE-2018-20556

SQL injection vulnerability in Booking Calendar plugin 8.4.3 for WordPress allows remote attackers to execute arbitrary SQL commands via the bookingid parameter...

8.8CVSS9.2AI score0.18906EPSS
Exploits5References4
Cvelist
Cvelist
added 2019/03/18 3:43 p.m.33 views

CVE-2018-20556

SQL injection vulnerability in Booking Calendar plugin 8.4.3 for WordPress allows remote attackers to execute arbitrary SQL commands via the bookingid parameter...

9.2AI score0.18906EPSS
Exploits5References4
CVE
CVE
added 2019/03/18 3:43 p.m.90 views

CVE-2018-20556

CVE-2018-20556 is a SQL injection vulnerability in the WordPress plugin Booking Calendar (version 8.4.3). The flaw allows an attacker to manipulate the booking_id parameter to execute arbitrary SQL commands on the underlying database, potentially exposing data. Multiple connected sources corrobor...

8.8CVSS9.1AI score0.18906EPSS
Exploits5References4Affected Software1
0day.today
0day.today
added 2019/02/15 12:0 a.m.59 views

WordPress Booking Calendar 8.4.3 Plugin - Authenticated SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Wordpress Booking Calendar v8.4.3 - Authenticated SQL Injection Vulnerability Exploit Author: B0UG Vendor Homepage: https://wpbookingcalendar.com/ Software Link: https://wordpress.org/plugins/booking/ Version: Tested on version...

0.1AI score0.18906EPSS
Exploits5
exploitpack
exploitpack
added 2019/02/14 12:0 a.m.76 views

WordPress Plugin Booking Calendar 8.4.3 - (Authenticated) SQL Injection

WordPress Plugin Booking Calendar 8.4.3 - Authenticated SQL Injection Exploit Title: Wordpress Booking Calendar v8.4.3 - Authenticated SQL Injection Vulnerability Date: 2018-12-28 Exploit Author: B0UG Vendor Homepage: https://wpbookingcalendar.com/ Software Link:...

6.5CVSS0.6AI score0.18906EPSS
Exploits5
Rows per page
Query Builder