Pricing
WordPress security Plugin auditing Managed VDP Bug Bounty Vulnerability database
Login
Start FREE
arrow right Booking Calendar Logo Booking Calendar 12
To plugin page Claim VDP

WordPress Booking Calendar Plugin <= 8.4.5.14 is vulnerable to SQL Injection

Patch priority: low
Resolve by 16 March, 2019 Low priority
8.8
High severity CVSS 3.1 score

Prevent exploits against this and future vulnerabilities!

Protect now

Solution

Fixed Update to fix

Update the WordPress Booking Calendar plugin to the latest available version (at least 8.4.5.15).

Details

Show technical details

B0UG discovered and reported this SQL Injection vulnerability in WordPress Booking Calendar Plugin. This could allow a malicious actor to directly interact with your database, including but not limited to stealing information. This vulnerability has been fixed in version 8.4.5.15.

Have additional information or questions about this entry? Get in touch.

Other vulnerabilities in this plugin

0 present
12 fixed
View all

Protection

Pricing WordPress For agencies Documentation

Solutions

WordPress security Plugin auditing Managed VDP Bug bounty Intelligence (API)

Bug bounty

Leaderboard Security programs Guidelines Report

Resources

Vulnerability Database Vulnerability Statistics Whitepaper 2022 Articles Join Discord

Patchstack

About StoreNEW Careers Media kit LinkedIn Facebook X
© 2024 Patchstack DPA Privacy Policy Terms & Conditions

Protection

Pricing WordPress For agencies Documentation

Solutions

WordPress security Plugin auditing Managed VDP Bug bounty Intelligence (API)

Bug bounty

Leaderboard Security programs Guidelines Report

Resources

Vulnerability Database Vulnerability Statistics Whitepaper 2022 Articles Join Discord

Patchstack

About StoreNEW Careers Media kit LinkedIn Facebook X
Mobile Menu

Let us know if we have missed a vulnerability reported elsewhere

Mobile Menu Close

Thank you for contributing!

Close Mobile Menu