Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 37 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-5791 Appointment Booking and Online Scheduling <= 4.4.2 - Missing Authorization to Unauthenticated Stored Cross-Site Scripting vcitaOnline Booking & Scheduling Calendar for WordPress by vcita High 7.2 2024-06-22 02:01:07 Deep Dive
CVE-2024-35761 WordPress Online Booking & Scheduling Calendar for WordPress by vcita plugin <= 4.4.0 - Cross Site Scripting (XSS) vulnerability vCitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 6.5 2024-06-21 12:38:39 Deep Dive
CVE-2024-5859 Appointment Booking and Online Scheduling <= 4.4.2 - Reflected Cross-Site Scripting vcitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 6.1 2024-06-21 08:39:43 Deep Dive
CVE-2023-39992 WordPress Online Booking & Scheduling Calendar for WordPress by vcita Plugin <= 4.3.2 is vulnerable to Cross Site Scripting (XSS) vCita.comOnline Booking & Scheduling Calendar for WordPress by vcita High 7.1 2023-09-04 10:33:19 Deep Dive
CVE-2023-2414 Online Booking & Scheduling Calendar for WordPress by vcita <= 4.4.6 - Missing Authorization to Settings Update and Arbitrary File Upload vcitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 5.4 2023-06-09 05:33:15 Deep Dive
CVE-2023-2416 Online Booking & Scheduling Calendar for WordPress by vcita <= 4.5 - Cross-Site Request Forgery to Account Logout vcitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 5.4 2023-06-03 04:35:17 Deep Dive
CVE-2023-2404 CRM and Lead Management by vcita <= 2.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting vcitaCRM and Lead Management by vcita Medium 6.4 2023-06-03 04:35:16 Deep Dive
CVE-2023-2298 Online Booking & Scheduling Calendar for WordPress by vcita <= 4.3.0 - Unauthenticated Stored Cross-Site Scripting vcitaOnline Booking & Scheduling Calendar for WordPress by vcita High 7.2 2023-06-03 04:35:16 Deep Dive
CVE-2023-2415 Online Booking & Scheduling Calendar for WordPress by vcita <= 4.2.10 - Missing Authorization to Account Logout vcitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 5.4 2023-06-03 04:35:16 Deep Dive
CVE-2023-2301 Contact Form Builder by vcita <= 4.10.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting eyale-vcContact Form Builder by vcita Medium 6.1 2023-06-03 04:35:15 Deep Dive
CVE-2023-2302 Contact Form and Calls To Action by vcita <= 2.6.4 - Authenticated (Contributor+) Stored Cross-Site Scripting vcitaContact Form and Calls To Action by vcita Medium 6.4 2023-06-03 04:35:15 Deep Dive
CVE-2023-2299 Online Booking & Scheduling Calendar for WordPress by vcita <= 4.4.2 - Missing Authorization on REST-API vcitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 5.3 2023-06-03 04:35:14 Deep Dive
CVE-2023-2303 Contact Form and Calls To Action by vcita <= 4.10.5 - Cross-Site Request Forgery to Stored Cross-Site Scripting eyale-vcContact Form Builder by vcita Medium 6.1 2023-06-03 04:35:14 Deep Dive
CVE-2023-2407 Event Registration Calendar By vcita <= 1.3.1 & Online Payments – Get Paid with PayPal, Square & Stripe <= 3.10.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting vcitaEvent Registration Calendar By vcita Medium 6.1 2023-06-03 04:35:13 Deep Dive
CVE-2023-2300 Contact Form Builder by vcita <= 4.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting eyale-vcContact Form Builder by vcita Medium 6.4 2023-06-03 04:35:13 Deep Dive
CVE-2023-2406 Event Registration Calendar By vcita <= 1.3.1 & Online Payments – Get Paid with PayPal, Square & Stripe <= 3.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vcitaEvent Registration Calendar By vcita Medium 6.4 2023-06-03 04:35:13 Deep Dive
CVE-2023-2405 CRM and Lead Management by vcita <= 2.7.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting vcitaCRM and Lead Management by vcita Medium 6.1 2023-06-03 04:35:12 Deep Dive