Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin 1.0.76

  • Severity: high-risk
  • Status: Open
  • Publication: November 27, 2023

The BookingPress plugin for WordPress has a security vulnerability. If someone with administrator-level access or higher uses it, they can upload any type of file to the affected site’s server. This could allow malicious code to be executed on the server, which is a serious security risk. To protect against this, make sure to update the plugin to the newest version, which is 1.0.76 or higher.

Detected in:

Appointment Booking Calendar Plugin and Online Scheduling Plugin – BookingPress fixed vulnerable versions:
Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPress fixed vulnerable versions:
BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin open vulnerable versions: >= * <= 1.0.76

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.