Security Advisory

CVE-2026-1508

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-10 06:00:06

Last updated 2026-03-10 12:58:58

Assigner WPScan

State PUBLISHED

Description

The Court Reservation WordPress plugin before 1.10.9 does not have CSRF check in place when deleting events, which could allow attackers to make a logged in admin delete them via a CSRF attack

← Browse all CVEs View on cve.org ↗