logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2023-5652

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2023-5652

Description:
The WP Hotel Booking WordPress plugin before 2.0.8 does not have authorisation and CSRF checks, as well as does not escape user input before using it in a SQL statement of a function hooked to admin_init, allowing unauthenticated users to perform SQL injections
Last updated date:
11/27/2023
Type:
exploit
Confidence:
HIGH
Date of publishing:
11/27/2023
Reference url to background

https://wpscan.com/vulnerability/8ea46b9a-5239-476b-949d-49546371eac1

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy