VYPR

CP Reservation Calendar

by WordPress

CVEs (1)

  • CVE-2015-7235Sep 17, 2015
    risk 0.00cvss epss 0.05

    Multiple SQL injection vulnerabilities in dex_reservations.php in the CP Reservation Calendar plugin before 1.1.7 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in a dex_reservations_calendar_load2 action or (2) dex_item parameter…