| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-37231 | WordPress Salon booking system plugin <= 9.9 - Arbitrary File Deletion vulnerability | Salon Booking System | Salon booking system | High | 8.6 | 2024-06-24 12:39:17 | Deep Dive |
| CVE-2024-5791 | Appointment Booking and Online Scheduling <= 4.4.2 - Missing Authorization to Unauthenticated Stored Cross-Site Scripting | vcita | Online Booking & Scheduling Calendar for WordPress by vcita | High | 7.2 | 2024-06-22 02:01:07 | Deep Dive |
| CVE-2024-5059 | WordPress Event Monster Plugin <= 1.4.0 - Sensitive Data Exposure vulnerability | A WP Life | Event Management Tickets Booking | Medium | 5.3 | 2024-06-21 13:03:31 | Deep Dive |
| CVE-2024-35761 | WordPress Online Booking & Scheduling Calendar for WordPress by vcita plugin <= 4.4.0 - Cross Site Scripting (XSS) vulnerability | vCita | Online Booking & Scheduling Calendar for WordPress by vcita | Medium | 6.5 | 2024-06-21 12:38:39 | Deep Dive |
| CVE-2024-5859 | Appointment Booking and Online Scheduling <= 4.4.2 - Reflected Cross-Site Scripting | vcita | Online Booking & Scheduling Calendar for WordPress by vcita | Medium | 6.1 | 2024-06-21 08:39:43 | Deep Dive |
| CVE-2024-6225 | Amelia <= 1.1.5 & Amelia (Pro) <= 7.5.1 - Authenticated (Admin+) Stored Cross-Site Scripting | ameliabooking | Booking for Appointments and Events Calendar – Amelia | Medium | 4.4 | 2024-06-21 07:39:57 | Deep Dive |
| CVE-2024-3605 | WP Hotel Booking <= 2.1.0 - Unauthenticated SQL Injection | thimpress | WP Hotel Booking | Critical | 10.0 | 2024-06-20 02:08:22 | Deep Dive |
| CVE-2024-3229 | Salon Booking System <= 10.2 - Unauthenticated Arbitrary File Upload | wordpresschef | Salon Booking System – Free Version | Critical | 9.8 | 2024-06-19 04:31:59 | Deep Dive |
| CVE-2024-1634 | Scheduling Plugin – Online Booking for WordPress <= 3.5.10 - Missing Authorization to Unauthenticated Service Disconnection | startbooking | Scheduling Plugin – Online Booking for WordPress | Medium | 6.5 | 2024-06-18 02:37:13 | Deep Dive |
| CVE-2024-1094 | Timetics- AI-powered Appointment Booking with Visual Seat Plan and ultimate Calendar Scheduling Plugin <= 1.0.21 - Missing Authorization to Limited Privilege Escalation | arraytics | Timetics – Appointment Booking & Scheduling | High | 7.3 | 2024-06-14 04:36:55 | Deep Dive |
| CVE-2024-5584 | WordPress Online Booking and Scheduling Plugin – Bookly <= 23.2 - Authenticated (Subscriber+) Stored Cross-Site Scripting via Color Profile Parameter | ladela | Online Scheduling and Appointment Booking System – Bookly | Medium | 6.4 | 2024-06-11 09:32:03 | Deep Dive |
| CVE-2024-35735 | WordPress WP Time Slots Booking Form plugin <= 1.2.11 - Broken Access Control vulnerability | CodePeople | WP Time Slots Booking Form | Medium | 5.3 | 2024-06-10 07:43:16 | Deep Dive |
| CVE-2024-33543 | WordPress WP Time Slots Booking Form plugin <= 1.2.06 - Broken Access Control vulnerability | CodePeople | WP Time Slots Booking Form | High | 7.5 | 2024-06-09 12:11:16 | Deep Dive |
| CVE-2024-35734 | WordPress WP Time Slots Booking Form plugin <= 1.2.10 - Cross Site Scripting (XSS) vulnerability | CodePeople | WP Time Slots Booking Form | High | 7.1 | 2024-06-08 12:49:14 | Deep Dive |
| CVE-2024-4468 | Salon booking system <= 9.9 - Missing Authorization | wordpresschef | Salon Booking System – Free Version | Medium | 4.3 | 2024-06-08 07:37:39 | Deep Dive |
| CVE-2023-38520 | WordPress Pinpoint Booking System plugin <= 2.9.9.3.4 - Parameter Tampering | PINPOINT.WORLD | Pinpoint Booking System | Medium | 6.5 | 2024-06-04 07:13:29 | Deep Dive |
| CVE-2023-24373 | WordPress Booking calendar, Appointment Booking System plugin <= 3.2.3 - Bypass vulnerability | WpDevArt | Booking calendar, Appointment Booking System | Low | 3.7 | 2024-06-03 21:35:58 | Deep Dive |
| CVE-2024-0434 | WordPress Tour & Travel Booking Plugin for WooCommerce – WpTravelly <= 1.7.1 - Missing Authorization via ttbm_new_place_save | magepeopleteam | Travelly – Tour & Travel Booking Manager for WooCommerce | Tour & Hotel Booking Solution | Medium | 5.3 | 2024-05-29 03:30:59 | Deep Dive |
| CVE-2024-35297 | WordPress plugin WP Booking 安全漏洞 | aviplugins.com | WP Booking | 中危 | - | 2024-05-27 04:40:55 | Deep Dive |
| CVE-2024-5385 | oretnom23 Online Car Wash Booking System cross site scripting | oretnom23 | Online Car Wash Booking System | Low | 2.4 | 2024-05-27 00:00:04 | Deep Dive |