Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in Booking Ultra Pro plugin <= 1.1.4 at WordPress.
References
Configurations
Configuration 1 (hide)
|
History
04 Oct 2022, 13:19
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:bookingultrapro:booking_ultra_pro_appointments_booking_calendar:*:*:*:*:*:wordpress:*:* | |
References | (CONFIRM) https://patchstack.com/database/vulnerability/booking-ultra-pro/wordpress-booking-ultra-pro-plugin-1-1-4-multiple-cross-site-request-forgery-csrf-vulnerabilities?_s_id=cve - Third Party Advisory | |
References | (CONFIRM) https://wordpress.org/plugins/booking-ultra-pro/ - Product | |
First Time |
Bookingultrapro booking Ultra Pro Appointments Booking Calendar
Bookingultrapro |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
30 Sep 2022, 17:37
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-09-30 17:15
Updated : 2023-12-10 14:35
NVD link : CVE-2021-36854
Mitre link : CVE-2021-36854
CVE.ORG link : CVE-2021-36854
JSON object : View
Products Affected
bookingultrapro
- booking_ultra_pro_appointments_booking_calendar
CWE
CWE-352
Cross-Site Request Forgery (CSRF)