SQL injection vulnerability in cpabc_appointments_admin_int_calendar_list.inc.php in the Appointment Booking Calendar plugin prior to 1.1.8 for WordPress allows remote malicious users to execute arbitrary SQL commands via unspecified vectors related to updating the username.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
codepeople appointment booking calendar |