CVE-2023-1129

Vulnerability Description

The WP FEvents Book WordPress plugin through 0.46 does not ensures that bookings to be updated belong to the user making the request, allowing any authenticated user to book, add notes, or cancel booking on behalf of other users.

Vulnerability Details

Published Date

April 24, 2023

Last Modified

February 04, 2025

Source

NVD

CVE-2023-1129

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment