Security Advisory

CVE-2023-4252

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-11-27 16:21:59

Last updated 2024-11-21 19:16:17

Assigner WPScan

State PUBLISHED

Description

The EventPrime WordPress plugin through 3.2.9 specifies the price of a booking in the client request, allowing an attacker to purchase bookings without payment.

← Browse all CVEs View on cve.org ↗