SQL injection vulnerability in cpabc_appointments_admin_int_calendar_list.inc.php in the Appointment Booking Calendar plugin before 1.1.8 for WordPress allows remote attackers to execute arbitrary SQL commands via unspecified vectors related to updating the username.
References
Configurations
History
No history.
Information
Published : 2015-09-29 19:59
Updated : 2024-02-28 15:21
NVD link : CVE-2015-7319
Mitre link : CVE-2015-7319
CVE.ORG link : CVE-2015-7319
JSON object : View
Products Affected
codepeople
- appointment_booking_calendar
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')