CVE-2024-7129 - "Simply Schedule Appointments WordPress Plugin Twig Template Injection"

CVE ID : CVE-2024-7129
Published : Sept. 13, 2024, 6:15 a.m. | 24 minutes ago
Description : The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin WordPress plugin before 1.6.7.43 does not escape template syntax provided via user input, leading to Twig Template Injection which further exploited can result to remote code Execution by high privilege such as admins
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...