CVE-2023-51405 | BookingPress Plugin up to 1.0.74 on WordPress Price bookingpress_confirm_booking access control

Posted by Angelo Barbosa | Jan 5, 2024 | CVE

A vulnerability classified as critical was found in BookingPress Plugin up to 1.0.74 on WordPress. Affected by this vulnerability is the function bookingpress_confirm_booking of the component Price Handler. The manipulation leads to improper access controls.

This vulnerability is known as CVE-2023-51405. The attack can be launched remotely. There is no exploit available.

CVE-2023-51405 | BookingPress Plugin up to 1.0.74 on WordPress Price bookingpress_confirm_booking access control

Related Posts

CVE-2023-25039 | CodePeople Google Maps CP Plugin up to 1.0.43 on WordPress authorization

CVE-2024-24747 | MinIO prior RELEASE.2024-01-31T20-20-33Z Access Key insecure preserved inherited permissions (GHSA-xx8w-mq23-29g4)

CVE-2024-9987 | Artica Pandora FMS up to 777.2 agents_modules_csv filters sql injection

CVE-2024-21033 | Oracle Complex Maintenance, Repair, and Overhaul up to 12.2.13 LOV Remote Code Execution