← Back

Bookster

bookster

Vendor: Wpbookster • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-5071
1Wpbookster
1Bookster
May 19, 2025
Jun 26, 2024
N/A· v4
6.5 MEDIUM· v3
N/A· v2
The Bookster WordPress plugin through 1.1.0 allows adding sensitive parameters when validating appointments allowing attackers to manipulate the data sent when booking an appointment (the request body) to change its sta...Show more
The Bookster WordPress plugin through 1.1.0 allows adding sensitive parameters when validating appointments allowing attackers to manipulate the data sent when booking an appointment (the request body) to change its status from pending to approved.Show less