CVE-2023-48744 | Availability Calendar Plugin up to 1.2.6 on WordPress add_availability_calendar_create_admin_page cross-site request forgery

Posted by Angelo Barbosa | Nov 27, 2023 | CVE

A vulnerability, which was classified as problematic, was found in Availability Calendar Plugin up to 1.2.6 on WordPress. Affected is the function add_availability_calendar_create_admin_page. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2023-48744. It is possible to launch the attack remotely. There is no exploit available.

CVE-2023-48744 | Availability Calendar Plugin up to 1.2.6 on WordPress add_availability_calendar_create_admin_page cross-site request forgery

Related Posts

CVE-2024-22639 | iGalerie 3.0.22 Editing Interface Titre cross site scripting (ID 176411)

CVE-2024-27319 | onnx up to 1.15.0 ONNX_ASSERT/ONNX_ASSERTM out-of-bounds

CVE-2024-42055 | Cervantes up to 0.5-alpha cross site scripting

CVE-2024-32894 | Google Android bc_utilities.c bc_get_converted_received_bearer out-of-bounds