Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbWpvulndbWPVDB-ID:07DB47E5-38B8-472B-99D3-19EA4AF67806
HistoryJan 05, 2024 - 12:00 a.m.

BookingPress < 1.0.75 - Unauthenticated Booking Price Manipulation

2024-01-0500:00:00
wpscan.com
16
bookingpress
validation
appointment
software security

7.1 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

Description The plugin does not have proper validation in its bookingpress_confirm_booking, allowing unauthenticated user to modify the price of an appointment

CPENameOperatorVersion
eq1.0.75

Related

cvelist 1
nvd 1
cve 1
cvelist
cvelist
CVE-2023-51405 WordPress BookingPress plugin <= 1.0.74 - Booking Price Manipulation vulnerability
2024-04-24 16:03:05
nvd
nvd
CVE-2023-51405
2024-04-24 16:15:08
cve
cve
CVE-2023-51405
2024-04-24 16:15:08

7.1 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON
Related for WPVDB-ID:07DB47E5-38B8-472B-99D3-19EA4AF67806
cvelist1nvd1cve1