Really Simple Security logo

Log out
Get PRO

Latest

Access violation vulnerability in Appointment Hour Booking – WordPress Booking Plugin 1.4.23

  • Severity: medium-risk
  • Status: Fixed
  • Publication: October 11, 2023

The Appointment Hour Booking plugin for WordPress has a security issue where it may allow people to book appointments twice without authorization. This is because the way it manages data is not properly checked in certain versions, including 1.4.23. This means that attackers who are not logged in could potentially make two appointments at once.

Detected in:

Appointment Hour Booking – Booking Calendar fixed vulnerable versions:
Appointment Hour Booking – WordPress Booking Plugin fixed vulnerable versions: >= * <= 1.4.23

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.