The BookIt plugin for WordPress is vulnerable to an issue where people who are not authenticated can access certain areas of the website. This means that if someone knows the email of an existing user, such as an administrator, they can gain access without needing to authenticate themselves. This vulnerability affects versions of BookIt up to and including 2.3.7.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
