Watch Out Wednesday – October 25, 2023
Plugin: WP Hotel Booking Vulnerability: Missing Authorization to (Subscriber+) Arbitrary Post DeletionPatched Version: 2.0.8Recommended Action: Update to version 2.0.8, or a newer patched version Plugin: Appointment Calendar Vulnerability: Cross-Site Request ForgeryPatched Version: n/aRecommended Action: No known patch available. Please review the vulnerability’s details in depth and employ mitigations based on your organization’s risk tolerance. It […]