CVE-2019-12239
N/A
N/A
Summary
The WP Booking System plugin 1.5.1 for WordPress has no CSRF protection, which allows attackers to reach certain SQL injection issues that require administrative access.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://dumpco.re/bugs/wp-plugin-wp-booking-system-sqli
- https://wordpress.org/plugins/wp-booking-system/#developers
- https://wpvulndb.com/vulnerabilities/9284
References
- http://dumpco.re/bugs/wp-plugin-wp-booking-system-sqli
- https://wordpress.org/plugins/wp-booking-system/#developers
- https://wpvulndb.com/vulnerabilities/9284
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.