| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-50851 | WordPress Simply Schedule Appointments Plugin < 1.6.6.1 is vulnerable to SQL Injection | N Squared | Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin | High | 7.6 | 2023-12-28 11:28:30 | Deep Dive |
| CVE-2023-50860 | WordPress Amelia Plugin <= 1.0.85 is vulnerable to Cross Site Scripting (XSS) | TMS | Booking for Appointments and Events Calendar – Amelia | Medium | 6.5 | 2023-12-28 10:14:11 | Deep Dive |
| CVE-2023-36507 | WordPress BookingPress Plugin <= 1.0.64 is vulnerable to Sensitive Data Exposure | Repute Infosystems | BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin | Medium | 5.3 | 2023-11-30 15:26:48 | Deep Dive |
| CVE-2023-6219 | BookingPress <= 1.0.76 - Authenticated (Administrator+) Arbitrary File Upload | reputeinfosystems | Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPress | High | 7.2 | 2023-11-28 02:37:20 | Deep Dive |
| CVE-2022-47428 | WordPress Booking calendar, Appointment Booking System Plugin <= 3.2.7 is vulnerable to SQL Injection | WpDevArt | Booking calendar, Appointment Booking System | Medium | 6.7 | 2023-11-06 07:36:32 | Deep Dive |
| CVE-2023-4620 | Booking Calendar < 9.7.3.1 - Unauthenticated Stored XSS | Unknown | Booking Calendar | 中危 | - | 2023-10-16 08:32:46 | Deep Dive |
| CVE-2023-39992 | WordPress Online Booking & Scheduling Calendar for WordPress by vcita Plugin <= 4.3.2 is vulnerable to Cross Site Scripting (XSS) | vCita.com | Online Booking & Scheduling Calendar for WordPress by vcita | High | 7.1 | 2023-09-04 10:33:19 | Deep Dive |
| CVE-2023-32511 | WordPress Booking Ultra Pro Plugin <= 1.1.8 is vulnerable to Cross Site Scripting (XSS) | Booking Ultra Pro | Booking Ultra Pro Appointments Booking Calendar Plugin | High | 7.1 | 2023-08-24 11:15:59 | Deep Dive |
| CVE-2023-32236 | WordPress Booking Ultra Pro Plugin <= 1.1.8 is vulnerable to Cross Site Scripting (XSS) | Booking Ultra Pro | Booking Ultra Pro Appointments Booking Calendar Plugin | High | 7.1 | 2023-08-23 13:04:56 | Deep Dive |
| CVE-2023-4110 | PHP Jabbers Availability Booking Calendar index.php cross site scripting | PHP Jabbers | Availability Booking Calendar | Low | 3.5 | 2023-08-03 02:31:03 | Deep Dive |
| CVE-2023-3970 | GZ Scripts Availability Booking Calendar PHP Image cross site scripting | GZ Scripts | Availability Booking Calendar PHP | Low | 3.5 | 2023-07-27 12:00:06 | Deep Dive |
| CVE-2023-3969 | GZ Scripts Availability Booking Calendar PHP HTTP POST Request index.php cross site scripting | GZ Scripts | Availability Booking Calendar PHP | Low | 3.5 | 2023-07-27 11:31:04 | Deep Dive |
| CVE-2023-36384 | WordPress Booking Calendar Contact Form Plugin <= 1.2.40 is vulnerable to Cross Site Scripting (XSS) | CodePeople | Booking Calendar Contact Form | High | 7.1 | 2023-07-18 14:17:40 | Deep Dive |
| CVE-2023-3558 | GZ Scripts Event Booking Calendar load.php cross site scripting | GZ Scripts | Event Booking Calendar | Low | 3.5 | 2023-07-08 14:00:05 | Deep Dive |
| CVE-2023-3544 | GZ Scripts Time Slot Booking Calendar PHP load.php cross site scripting | GZ Scripts | Time Slot Booking Calendar PHP | Low | 3.5 | 2023-07-07 17:00:05 | Deep Dive |
| CVE-2023-3543 | GZ Scripts Availability Booking Calendar PHP HTTP POST Request load.php cross site scripting | GZ Scripts | Availability Booking Calendar PHP | Low | 3.5 | 2023-07-07 16:31:03 | Deep Dive |
| CVE-2023-2834 | BookIt <= 2.3.7 - Authentication Bypass | stellarwp | Bookit — Booking & Appointment Calendar | Critical | 9.8 | 2023-06-30 01:56:18 | Deep Dive |
| CVE-2023-29427 | WordPress Amelia Plugin <= 1.0.75 is vulnerable to Cross Site Scripting (XSS) | TMS | Booking for Appointments and Events Calendar – Amelia | High | 7.1 | 2023-06-26 08:32:56 | Deep Dive |
| CVE-2023-2414 | Online Booking & Scheduling Calendar for WordPress by vcita <= 4.4.6 - Missing Authorization to Settings Update and Arbitrary File Upload | vcita | Online Booking & Scheduling Calendar for WordPress by vcita | Medium | 5.4 | 2023-06-09 05:33:15 | Deep Dive |
| CVE-2023-2416 | Online Booking & Scheduling Calendar for WordPress by vcita <= 4.5 - Cross-Site Request Forgery to Account Logout | vcita | Online Booking & Scheduling Calendar for WordPress by vcita | Medium | 5.4 | 2023-06-03 04:35:17 | Deep Dive |