Lucene search
Muhammad Daffa (Patchstack Alliance)PATCHSTACK:86B78BB2D2D2F1EED0A6D2C35D354DCBHistorySep 06, 2022 - 12:00 a.m.
WordPress Booking Calendar plugin <= 9.2.1 - Cross-Site Request Forgery (CSRF) leading to Translations Update
2022-09-0600:00:00
Muhammad Daffa (Patchstack Alliance)
patchstack.com
7
wordpress
booking calendar
csrf
translations update
patchstack alliance
update
0.001 Low
EPSS
Percentile
21.0%
Cross-Site Request Forgery (CSRF) leading to Translations Update discovered by Muhammad Daffa (Patchstack Alliance) in WordPress Booking Calendar plugin (versions <= 9.2.1).
Solution
Update the WordPress Booking Calendar plugin to the latest available version (at least 9.2.2).
| CPE | Name | Operator | Version |
|---|---|---|---|
| booking calendar | le | 9.2.1 |
Related
cvelist
cvelist
prion
prion
Cross site request forgery (csrf)
2022-09-06 18:15:00
cve
cve
CVE-2022-33177
2022-09-06 18:15:15
wpvulndb
wpvulndb
Booking Calendar < 9.2.2 - Arbitrary Translation Update via CSRF
2022-09-06 00:00:00
nvd
nvd
CVE-2022-33177
2022-09-06 18:15:15