CVE-2022-36399
CVE-2022-36399 affects the WordPress plugin Booked - Appointment Booking for WordPress (up to version before 2.4.4). It exposes sensitive data to unauthenticated actors due to improper access control. Fixed in version 2.4.4. Upgrading to 2.4.4+ mitigates the issue; no exploit details are provided...