2023-11-27 16:21:59
WPScan
PUBLISHED
The EventPrime WordPress plugin through 3.2.9 specifies the price of a booking in the client request, allowing an attacker to purchase bookings without payment.