CVE-2023-48744 | Availability Calendar Plugin up to 1.2.6 on WordPress add_availability_calendar_create_admin_page cross-site request forgery

Inserito da Angelo Barbosa | Nov 27, 2023 | CVE

A vulnerability, which was classified as problematic, was found in Availability Calendar Plugin up to 1.2.6 on WordPress. Affected is the function add_availability_calendar_create_admin_page. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2023-48744. It is possible to launch the attack remotely. There is no exploit available.

CVE-2023-48744 | Availability Calendar Plugin up to 1.2.6 on WordPress add_availability_calendar_create_admin_page cross-site request forgery

Post correlati

CVE-2023-6474 | PHPGurukul Nipah Virus Testing Management System 1.0 manage-phlebotomist.php pid cross-site request forgery

CVE-2023-7193 | MTab Bookmark up to 1.2.6 Installation public/install.php access control

CVE-2024-36423 | FlowiseAI Flowise up to 1.4.3 404 Page id cross site scripting (GHSL-2023-232)

CVE-2024-49904 | Linux Kernel up to 6.10.13/6.11.2 AMD list_for_each_entry_safe null pointer dereference (5ec731ef47f1/8e87763946f7/4416377ae1fd)