Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2023-4252

Disclosure Date: November 27, 2023 (last updated November 30, 2023)
The EventPrime WordPress plugin through 3.2.9 specifies the price of a booking in the client request, allowing an attacker to purchase bookings without payment.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0