2 matches found
WordPress Appointment Hour Booking Plugin < 1.3.73 Multiple Vulnerabilities
The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:dwbooster:appointmenthourbooking"; ifdescription...
CVE-2022-4036
CVE-2022-4036 affects the WordPress plugin Appointment Hour Booking. The root cause is an insufficiently strong hashing algorithm for the CAPTCHA secret, which is also exposed to users via a cookie, enabling a CAPTCHA bypass. Affected versions are up to and including 1.3.72. The vulnerability has...