3 matches found
CVE-2023-37389
CVE-2023-37389 relates to SAASPROJECT Booking Package Plugin for WordPress, where versions 1.5.98 and earlier suffer an unauthenticated privilege escalation due to improper privilege management. The Patchstack entry confirms the vulnerable component and the root cause as Privilege Escalation with...
CVE-2023-37389 WordPress Booking Package SAASPROJECT plugin <= 1.5.98 - Unauthenticated Privilege Escalation vulnerability
Improper Privilege Management vulnerability in SAASPROJECT Booking Package Booking Package allows Privilege Escalation.This issue affects Booking Package: from n/a through 1.5.98...
WordPress Booking Package Plugin <= 1.5.98 is vulnerable to Privilege Escalation
Software Booking Package Type Plugin Vulnerable versions = 1.5.98 Fixed in 1.5.99 OWASP Top 10 A7: Identification and Authentication Failures Classification Privilege Escalation CVE CVE-2023-37389 Patch priority High CVSS severity High 8.8 Developer Claim ownership PSID 0ff1d9e379c0 Credits Rafie...