Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 656 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-31541 WordPress TuriTop Booking System plugin <= 1.0.10 - Broken Access Control vulnerability TuriTopTuriTop Booking System Medium 6.5 2025-04-03 13:27:11 Deep Dive
CVE-2025-3147 PHPGurukul Boat Booking System add-subadmin.php sql injection PHPGurukulBoat Booking System High 7.3 2025-04-03 07:00:15 Deep Dive
CVE-2025-31560 WordPress Salon booking system plugin < 10.15 - Privilege Escalation vulnerability Dimitri GrassiSalon booking system High 7.2 2025-04-01 20:58:13 Deep Dive
CVE-2025-31851 WordPress Beds24 Online Booking plugin <= 2.0.27 - Cross Site Scripting (XSS) vulnerability markkinchinBeds24 Online Booking Medium 6.5 2025-04-01 14:52:01 Deep Dive
CVE-2025-31803 WordPress Turisbook Booking System plugin <= 1.3.8 - Stored Cross Site Scripting (XSS) vulnerability NeteuroTurisbook Booking System Medium 6.5 2025-04-01 14:51:36 Deep Dive
CVE-2025-2578 Booking for Appointments and Events Calendar – Amelia <= 1.2.19 - Unauthenticated Full Path Disclosure ameliabookingBooking for Appointments and Events Calendar – Amelia Medium 5.3 2025-03-28 07:33:04 Deep Dive
CVE-2025-22634 WordPress Easy Booked Plugin <= 2.4.5 - Cross Site Request Forgery (CSRF) vulnerability MD Abu Jubayer HossainEasy Booked – Appointment Booking and Scheduling Management System for WordPress Medium 5.4 2025-03-27 15:27:43 Deep Dive
CVE-2025-22668 WordPress Awesome Event Booking plugin <= 2.7.2 - Broken Access Control vulnerability AwesomeTOGIAwesome Event Booking Medium 6.5 2025-03-27 14:23:14 Deep Dive
CVE-2025-22669 WordPress Awesome Event Booking plugin <= 2.7.5 - Cross Site Request Forgery (CSRF) vulnerability AwesomeTOGIAwesome Event Booking Medium 4.3 2025-03-27 14:22:25 Deep Dive
CVE-2025-22670 WordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.7.2 - CSRF to Settings Change vulnerability e4jvikwpVikBooking Hotel Booking Engine & PMS Medium 6.5 2025-03-27 14:14:49 Deep Dive
CVE-2025-30839 WordPress Taxi Booking Manager for WooCommerce plugin <= 1.2.1 - Broken Access Control vulnerability magepeopleteamTaxi Booking Manager for WooCommerce Medium 5.3 2025-03-27 10:55:23 Deep Dive
CVE-2025-30531 WordPress WP Ride Booking plugin <= 2.4 - Cross Site Request Forgery (CSRF) Vulnerability GBS DeveloperWP Ride Booking Medium 4.3 2025-03-24 13:46:42 Deep Dive
CVE-2025-2608 PHPGurukul Banquet Booking System view-user-queries.php sql injection PHPGurukulBanquet Booking System Medium 6.3 2025-03-21 21:31:06 Deep Dive
CVE-2024-13412 CozyStay <= 1.7.0 - Missing Authorization to Arbitrary Action Execution in ajax_handler LoftOceanCozyStay - Hotel Booking WordPress Theme High 7.5 2025-03-19 06:57:42 Deep Dive
CVE-2024-13410 CozyStay <= 1.7.0 and TinySalt <= 3.9.0 - Unauthenticated PHP Object Injection in ajax_handler LoftOceanCozyStay - Hotel Booking WordPress Theme Critical 9.8 2025-03-19 06:57:41 Deep Dive
CVE-2025-2471 PHPGurukul Boat Booking System boat-details.php sql injection PHPGurukulBoat Booking System Medium 6.3 2025-03-17 23:31:05 Deep Dive
CVE-2025-2382 PHPGurukul Online Banquet Booking System booking-search.php sql injection PHPGurukulOnline Banquet Booking System High 7.3 2025-03-17 15:00:09 Deep Dive
CVE-2025-26921 WordPress Booking and Rental Manager Plugin <= 2.2.6 - PHP Object Injection vulnerability magepeopleteamBooking and Rental Manager High 8.8 2025-03-15 21:57:03 Deep Dive
CVE-2025-1771 Traveler <= 3.1.8 - Unauthenticated Local File Inclusion via hotel_alone_load_more_post ShineThemeTravel Booking WordPress Theme Critical 9.8 2025-03-15 04:22:08 Deep Dive
CVE-2025-1773 Traveler <= 3.1.8 - Reflected Cross-Site Scripting ShineThemeTravel Booking WordPress Theme Medium 6.1 2025-03-15 04:22:07 Deep Dive