VYPR

Booking Calendar WpDevArt

by WordPress

CVEs (1)

  • CVE-2024-10856MedDec 24, 2024
    risk 0.42cvss 6.5epss 0.00

    The Booking Calendar WpDevArt plugin is vulnerable to time-based, blind SQL injection via the `id` parameter in the “wpdevart_booking_calendar” shortcode in versions up to, and including, 3.2.19 due to insufficient escaping on the user-supplied parameter and lack of…