CVE-2023-51354

HIGH WAF: Low

CVSS 8.8 Published: 2023-12-29

CWE-352

Cross-Site Request Forgery (CSRF) vulnerability in WebbaPlugins Appointment & Event Booking Calendar Plugin – Webba Booking.This issue affects Appointment & Event Booking Calendar Plugin – Webba Booking: from n/a through 4.5.33.

WAF Coverage Analysis

Cross-Site Request Forgery (CSRF) Low WAF Coverage

OWASP: A01:2021 Broken Access Control

Affected Software

Vendor	Product	Version
webba-booking	webba_booking	up to 4.5.33

References

patchstack.com (Third Party Advisory)

Back to CVE Database