CVE-2016-20068 | dwbooster Booking Calendar Contact Form up to 1.0.23 admin-ajax.php ID sql injection (Exploit 39423 / EDB-39423)

A vulnerability was found in dwbooster Booking Calendar Contact Form up to 1.0.23 and classified as critical. Impacted is an unknown function of the file admin-ajax.php. Such manipulation of the argument ID leads to sql injection.

This vulnerability is uniquely identified as CVE-2016-20068. The attack can be launched remotely. Moreover, an exploit is present.VulDB Recent EntriesRead More