| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-4442 | Salon booking system <= 9.9 - Unauthenticated Arbitrary File Deletion | wordpresschef | Salon Booking System – Free Version | Critical | 9.1 | 2024-05-21 06:49:55 | Deep Dive |
| CVE-2024-32960 | WordPress Booking Ultra Pro plugin 1.1.12 - Privilege Escalation vulnerability | Booking Ultra Pro | Booking Ultra Pro | High | 8.8 | 2024-05-17 09:40:46 | Deep Dive |
| CVE-2024-32720 | WordPress Appointment Hour Booking plugin <= 1.4.56 - Captcha Bypass vulnerability | CodePeople | Appointment Hour Booking | Medium | 5.3 | 2024-05-17 09:37:28 | Deep Dive |
| CVE-2024-32692 | WordPress Chauffeur Taxi Booking System for WordPress plugin <= 6.9 - Broken Authentication vulnerability | QuanticaLabs | Chauffeur Taxi Booking System for WordPress | High | 8.2 | 2024-05-17 09:19:46 | Deep Dive |
| CVE-2023-48319 | WordPress Salon booking system plugin < 8.7 - Editor+ Privilege Escalation vulnerability | Salon Booking System | Salon booking system | Medium | 6.8 | 2024-05-17 08:37:58 | Deep Dive |
| CVE-2023-37389 | WordPress Booking Package SAASPROJECT plugin <= 1.5.98 - Unauthenticated Privilege Escalation vulnerability | SAASPROJECT Booking Package | Booking Package | High | 8.8 | 2024-05-17 06:47:46 | Deep Dive |
| CVE-2024-4288 | Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin <= 1.6.7.14 - Authenticated (Contributor+) Stored Cross-Site Scripting | croixhaug | Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin | Medium | 6.4 | 2024-05-16 11:05:29 | Deep Dive |
| CVE-2024-4413 | Hotel Booking Lite <= 4.11.1 - Unauthenticated PHP Object Injection | jetmonsters | MotoPress Hotel Booking | Critical | 9.8 | 2024-05-10 21:32:41 | Deep Dive |
| CVE-2024-2441 | VikBooking < 1.6.8 - Insecure Direct Object References | Unknown | VikBooking Hotel Booking Engine & PMS | 中危 | - | 2024-05-10 06:00:02 | Deep Dive |
| CVE-2024-2749 | VikBooking < 1.6.8 - Broken Access Control | Unknown | VikBooking Hotel Booking Engine & PMS | 高危 | - | 2024-05-10 06:00:02 | Deep Dive |
| CVE-2024-4083 | Easy Restaurant Table Booking <= 1.0.0 - Cross-Site Request Forgery | way2neelam | Easy Restaurant Table Booking | Medium | 4.3 | 2024-05-02 16:51:48 | Deep Dive |
| CVE-2024-1895 | Event Monster <= 1.3.9 - Authenticated(Contributor+) PHP Object Injection via Custom Meta | awordpresslife | Event Monster – Manager & Ticket Booking | High | 7.5 | 2024-04-30 08:32:22 | Deep Dive |
| CVE-2024-2429 | Salon booking system <= 9.6.5 - Settings Update via CSRF | Unknown | Salon booking system | - | - | 2024-04-26 05:00:03 | Deep Dive |
| CVE-2024-2439 | Salon booking system <= 9.6.5 - Editor+ Stored XSS | Unknown | Salon booking system | - | - | 2024-04-26 05:00:03 | Deep Dive |
| CVE-2024-2603 | Salon booking system <= 9.6.5 - Editor+ Stored XSS via Email Settings | Unknown | Salon booking system | - | - | 2024-04-26 05:00:03 | Deep Dive |
| CVE-2024-32563 | WordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.6.7 - Reflected Cross Site Scripting (XSS) vulnerability | VikBooking Hotel Booking Engine & PMS | VikBooking Hotel Booking Engine & PMS | High | 7.1 | 2024-04-18 09:57:39 | Deep Dive |
| CVE-2024-32576 | WordPress BA Book Everything plugin <= 1.6.8 - Cross Site Scripting (XSS) vulnerability | Booking Algorithms | BA Book Everything | Medium | 6.5 | 2024-04-18 09:34:42 | Deep Dive |
| CVE-2024-32598 | WordPress BA Book Everything plugin <= 1.6.8 - Cross Site Scripting (XSS) vulnerability | Booking Algorithms | BA Book Everything | Medium | 5.9 | 2024-04-18 08:26:04 | Deep Dive |
| CVE-2024-2101 | WordPress Plugin Salon Booking System < 9.6.3 - Unauthenticated Stored Cross-Site Scripting (XSS) | Unknown | Salon booking system | - | - | 2024-04-17 05:00:03 | Deep Dive |
| CVE-2024-2102 | Salon booking system < 9.6.3 - Unauthenticated Stored XSS | Unknown | Salon booking system | - | - | 2024-04-17 05:00:03 | Deep Dive |