0.002 Low
EPSS
Percentile
60.6%
The plugin does not properly validate the signature file uploaded via its booking form, which could allow unauthenticated attacker to upload arbitrary files