CVE-2023-48744 | Availability Calendar Plugin up to 1.2.6 on WordPress add_availability_calendar_create_admin_page cross-site request forgery

Posted by Angelo Barbosa | Nov 27, 2023 | CVE

A vulnerability, which was classified as problematic, was found in Availability Calendar Plugin up to 1.2.6 on WordPress. Affected is the function add_availability_calendar_create_admin_page. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2023-48744. It is possible to launch the attack remotely. There is no exploit available.

CVE-2023-48744 | Availability Calendar Plugin up to 1.2.6 on WordPress add_availability_calendar_create_admin_page cross-site request forgery

Related Posts

CVE-2024-27873 | Apple iOS/iPadOS Video out-of-bounds write

CVE-2024-47644 | Copyscape & Indigo Stream Technologies Copyscape Premium Plugin up to 1.3.6 on WordPress cross-site request forgery

CVE-2024-6556 | SmartCrawl SEO Checker, SEO Analyzer, SEO Optimizer Plugin information disclosure

CVE-2024-37298 | gorilla schema up to 1.4.0 session_id allocation of resources (GHSA-3669-72×9-r9p3)