Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/02/03 9:18 a.m.6 views

CVE-2026-0658

The Five Star Restaurant Reservations WordPress plugin before 2.7.9 does not have CSRF checks in some bulk actions, which could allow attackers to make logged in admins perform unwanted actions, such as deleting bookings via CSRF attacks...

4.3CVSS5.4AI score0.00133EPSS
Exploits0References1
NVD
NVD
added 2026/02/02 7:16 a.m.7 views

CVE-2026-0658

The Five Star Restaurant Reservations WordPress plugin before 2.7.9 does not have CSRF checks in some bulk actions, which could allow attackers to make logged in admins perform unwanted actions, such as deleting bookings via CSRF attacks...

4.3CVSS0.00133EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.6 views

PT-2026-5611

The Five Star Restaurant Reservations WordPress plugin before 2.7.9 does not have CSRF checks in some bulk actions, which could allow attackers to make logged in admins perform unwanted actions, such as deleting bookings via CSRF attacks...

5.4AI score0.00133EPSS
Exploits0References2
CVE
CVE
added 2025/10/10 6:0 a.m.28 views

CVE-2025-10124

CVE-2025-10124 concerns the Booking Manager WordPress plugin, version

4.5CVSS6.4AI score0.00241EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/10 12:0 a.m.6 views

PT-2025-41504

Name of the Vulnerable Software and Affected Versions The Booking Manager WordPress plugin versions prior to 2.1.15 Description The Booking Manager WordPress plugin has an issue where a shortcode capable of deleting bookings is registered and accessible to users with contributor privileges or...

6.5CVSS6.5AI score0.00241EPSS
Exploits0References5
CNVD
CNVD
added 2021/06/06 12:0 a.m.7 views

Unspecified vulnerability in Listeo WordPress plugin (CNVD-2021-44295)

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress Plugin is a WordPress open source application plugin . Listeo WordPress has a security vulnerability before...

6.5CVSS6.9AI score0.00986EPSS
Exploits2References1
OSV
OSV
added 2021/06/01 2:15 p.m.5 views

CVE-2021-24318

The Listeo WordPress theme before 1.6.11 did not ensure that the Post/Page and Booking to delete belong to the user making the request, allowing any authenticated users to delete arbitrary page/post and booking via an IDOR vector...

6.5CVSS6.7AI score0.00986EPSS
Exploits2References2
Rows per page
Query Builder