Lucene search

K
wpvulndbWpvulndbWPVDB-ID:0B3E1DFC-3A58-4256-AD71-518CD003B7AD
HistoryOct 17, 2023 - 12:00 a.m.

Pinpoint Booking System < 2.9.9.4.1 - Arbitrary Settings Update via CSRF

2023-10-1700:00:00
wpscan.com
6
plugin
csrf
attacks
security

AI Score

8.7

Confidence

High

EPSS

0.001

Percentile

29.0%

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks

AI Score

8.7

Confidence

High

EPSS

0.001

Percentile

29.0%

Related for WPVDB-ID:0B3E1DFC-3A58-4256-AD71-518CD003B7AD