3 matches found
CVE-2024-31296
Authorization Bypass Through User-Controlled Key vulnerability in Repute Infosystems BookingPress.This issue affects BookingPress: from n/a through 1.0.81...
CVE-2024-31296
CVE-2024-31296 refers to an Authorization Bypass via a user-controlled key in BookingPress (BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin). Connected Red Hat advisory confirms the vulnerability affects BookingPress versions up to 1.0.81 and describes an Authoriza...
WordPress BookingPress Plugin <= 1.0.81 is vulnerable to Insecure Direct Object References (IDOR)
Software BookingPress Type Plugin Vulnerable versions = 1.0.81 Fixed in 1.0.82 OWASP Top 10 A1: Broken Access Control Classification Insecure Direct Object References IDOR CVE CVE-2024-31296 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 1ca5ae451b3c Credits Steven Julian...