CVE-2018-5673
The CVE-2018-5673 entry concerns the WordPress Booking Calendar plugin prior to v2.1.8, where a CSRF vulnerability exists in wp-admin/admin.php for plugin 2.1.7. The NVD entry records CSRF with CVSS v2 base 6.8 (Medium) and CVSS v3 base 8.8 (High). Connected sources also describe an authenticated...