CVE-2024-6467

HIGH

BookingPress - Appointment Booking Calendar Plugin - Arbitrary File...

Title source: llm

Description

The BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin plugin for WordPress is vulnerable to Arbitrary File Read to Arbitrary File Creation in all versions up to, and including, 1.1.5 via the 'bookingpress_save_lite_wizard_settings_func' function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to create arbitrary files that contain the content of files (either on the local server or from a remote location), allowing the execution of any PHP code in those files or the exposure of sensitive information.

References (2)

Core 2

Core References

Patch

https://plugins.trac.wordpress.org/changeset/3116857/bookingpress-appointment-booking/trunk/core/classes/class.bookingpress.php

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/d0177510-cd7d-4cc5-96c3-78433aa0e3f6?source=cve

Scores

CVSS v3 8.8

EPSS 0.0086

EPSS Percentile 53.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-73

Status published

Products (2)

reputeinfosystems/Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPress < 1.1.5

reputeinfosystems/bookingpress < 1.1.6

Published Jul 17, 2024

Tracked Since Feb 18, 2026