CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-10215

The WPBookit plugin for WordPress is vulnerable to Arbitrary User Password Change in versions up to, and including, 1.6.4. This is due to the plugin providing user-controlled access to objects, letting a user bypass authorization and access system resources. This makes it possible for unauthenticated attackers to change user passwords and potentially take over administrator accounts.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.9%

CVSS Severity

CVSS v3 Score 9.8

References

Products affected by CVE-2024-10215

Iqonic » Wpbookit » Version: 1.0.0

cpe:2.3:a:iqonic:wpbookit:1.0.0
Iqonic » Wpbookit » Version: 1.1.0

cpe:2.3:a:iqonic:wpbookit:1.1.0
Iqonic » Wpbookit » Version: 1.2.0

cpe:2.3:a:iqonic:wpbookit:1.2.0
Iqonic » Wpbookit » Version: 1.3.0

cpe:2.3:a:iqonic:wpbookit:1.3.0
Iqonic » Wpbookit » Version: 1.3.1

cpe:2.3:a:iqonic:wpbookit:1.3.1
Iqonic » Wpbookit » Version: 1.4.0

cpe:2.3:a:iqonic:wpbookit:1.4.0
Iqonic » Wpbookit » Version: 1.4.1

cpe:2.3:a:iqonic:wpbookit:1.4.1
Iqonic » Wpbookit » Version: 1.4.2

cpe:2.3:a:iqonic:wpbookit:1.4.2
Iqonic » Wpbookit » Version: 1.4.3

cpe:2.3:a:iqonic:wpbookit:1.4.3
Iqonic » Wpbookit » Version: 1.4.4

cpe:2.3:a:iqonic:wpbookit:1.4.4
Iqonic » Wpbookit » Version: 1.5.0

cpe:2.3:a:iqonic:wpbookit:1.5.0
Iqonic » Wpbookit » Version: 1.5.1

cpe:2.3:a:iqonic:wpbookit:1.5.1
Iqonic » Wpbookit » Version: 1.5.2

cpe:2.3:a:iqonic:wpbookit:1.5.2
Iqonic » Wpbookit » Version: 1.5.3

cpe:2.3:a:iqonic:wpbookit:1.5.3
Iqonic » Wpbookit » Version: 1.5.4

cpe:2.3:a:iqonic:wpbookit:1.5.4
Iqonic » Wpbookit » Version: 1.5.5

cpe:2.3:a:iqonic:wpbookit:1.5.5
Iqonic » Wpbookit » Version: 1.6.0

cpe:2.3:a:iqonic:wpbookit:1.6.0
Iqonic » Wpbookit » Version: 1.6.1

cpe:2.3:a:iqonic:wpbookit:1.6.1
Iqonic » Wpbookit » Version: 1.6.2

cpe:2.3:a:iqonic:wpbookit:1.6.2
Iqonic » Wpbookit » Version: 1.6.3

cpe:2.3:a:iqonic:wpbookit:1.6.3
Iqonic » Wpbookit » Version: 1.6.4

cpe:2.3:a:iqonic:wpbookit:1.6.4
Iqonic » Wpbookit » Version: 1.6.5

cpe:2.3:a:iqonic:wpbookit:1.6.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-10215

Products

Pricing

Contact Us