Online Booking & Scheduling Calendar for WordPress by vcita, CVE-2024-37499

CVE, Research URL: CVE-2024-37499
Home page URL: Security reports for Online Booking & Scheduling Calendar for WordPress by vcita
Application: Online Booking & Scheduling Calendar for WordPress by vcita
Published on: Jul 09, 2024
Research Description: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in vCita Online Booking & Scheduling Calendar for WordPress by vcita allows Path Traversal.This issue affects Online Booking & Scheduling Calendar for WordPress by vcita: from n/a through 4.4.2.
Affected versions: Min -, max 4.4.3.
Status: vulnerable

Online Booking &amp; Scheduling Calendar for WordPress by vcita, CVE-2024-37499