Bookingpress Security Vulnerabilities and Issues — Bookingpress CVE List

Lucene search

ReputeinfosystemsBookingpress

3 matches found

CVE•added 2023/11/28 3:15 a.m.•74 views

CVE-2023-6219

The BookingPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file validation on the 'bookingpress_process_upload' function in versions up to, and including, 1.0.76. This makes it possible for authenticated attackers with administrator-level capabilities or above...

7.2CVSS7.4AI score0.02096EPSS

CVE•added 2024/04/04 2:15 a.m.•59 views

CVE-2024-3022

The BookingPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient filename validation in the 'bookingpress_process_upload' function in all versions up to, and including 1.0.87. This allows an authenticated attacker with administrator-level capabilities or higher to u...

7.2CVSS9.6AI score0.06876EPSS

CVE•added 2025/04/01 3:16 p.m.•44 views

CVE-2025-31910

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in reputeinfosystems BookingPress allows SQL Injection. This issue affects BookingPress: from n/a through 1.1.28.

7.6CVSS7.9AI score0.00053EPSS