Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2025/10/31 9:27 a.m.2 views

CVE-2025-12115 WPC Name Your Price for WooCommerce <= 2.1.9 - Unauthenticated Price Alteration

The WPC Name Your Price for WooCommerce plugin for WordPress is vulnerable to unauthorized price alteration in all versions up to, and including, 2.1.9. This is due to the plugin not disabling the ability to name a custom price when it has been specifically disabled for a product. This makes it...

7.5CVSS5.6AI score0.00269EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/17 8:48 a.m.28 views

CVE-2024-24715 WordPress WordPress BookIt Plugin plugin <= 2.4.0 - Price Bypass Vulnerability vulnerability

Improper Validation of Specified Quantity in Input vulnerability in The Events Calendar BookIt allows Manipulating Hidden Fields.This issue affects BookIt: from n/a through 2.4.0...

6.5CVSS6.5AI score0.00482EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/17 8:48 a.m.19 views

CVE-2024-24715 WordPress WordPress BookIt Plugin plugin <= 2.4.0 - Price Bypass Vulnerability vulnerability

Improper Validation of Specified Quantity in Input vulnerability in The Events Calendar BookIt allows Manipulating Hidden Fields.This issue affects BookIt: from n/a through 2.4.0...

6.5CVSS6.9AI score0.00482EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/02/06 12:0 a.m.21 views

BookIt <= 2.4.0 - Price Bypass

Description The Booking Calendar | Appointment Booking | BookIt plugin for WordPress is vulnerable to Price Bypass in versions up to and including 2.4.0. This makes it possible for site owners to make use of premium plugin features without paying. Note that this does not meaningfully negatively...

6.4CVSS6.8AI score0.00482EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder