Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Booking calendar Appointment Booking System Security Bypass - CVE-2018-10363 - Vulnerability Database
WP Plugin Booking Calendar

WordPress Plugin Booking calendar Appointment Booking System Security Bypass - CVE-2018-10363

High
Reference: CVE-2018-10363
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2018-10363
Title: WordPress Plugin Booking calendar Appointment Booking System Security Bypass
Overview:

WordPress Plugin Booking calendar Appointment Booking System is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently manipulate the parameter values to change data such as prices. WordPress Plugin Booking calendar Appointment Booking System version 2.2.2 is vulnerable prior versions may also be affected.