Lucene search
PatchstackCVELIST:CVE-2021-36854HistorySep 28, 2022 - 12:00 a.m.
CVE-2021-36854 WordPress Booking Ultra Pro plugin <= 1.1.4 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities
2022-09-2800:00:00
CWE-352
Patchstack
www.cve.org
wordpress
booking ultra pro
csrf
vulnerabilities
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
9.2 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
32.0%
Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in Booking Ultra Pro plugin <= 1.1.4 at WordPress.
CNA Affected
[
{
"product": "Booking Ultra Pro (WordPress plugin)",
"vendor": "Booking Ultra Pro",
"versions": [
{
"lessThanOrEqual": "1.1.4",
"status": "affected",
"version": "<= 1.1.4",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2021-36854
2022-09-30 17:15:11
patchstack
patchstack
wpvulndb
wpvulndb
Booking Ultra Pro <= 1.1.4 - Multiple CSRF
2022-09-28 00:00:00
nvd
nvd
CVE-2021-36854
2022-09-30 17:15:11
prion
prion
Cross site request forgery (csrf)
2022-09-30 17:15:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
9.2 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
32.0%
Related for CVELIST:CVE-2021-36854