RSS   Vulnerabilities for 'Bookingpress'   RSS

2022-03-21
 
CVE-2022-0739

CWE-89
 

 
The BookingPress WordPress plugin before 1.0.11 fails to properly sanitize user supplied POST data before it is used in a dynamically constructed SQL query via the bookingpress_front_get_category_services AJAX action (available to unauthenticated users), leading to an unauthenticated SQL Injection

 

 >>> Vendor: Reputeinfosystems 6 Products
Repute arforms
Arprice lite
Arforms
Contact form\, survey \& popup form plugin for wordpress - arforms form builder
Bookingpress
Pricing table


Copyright 2024, cxsecurity.com

 

Back to Top