Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 192 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2023-2415 Online Booking & Scheduling Calendar for WordPress by vcita <= 4.2.10 - Missing Authorization to Account Logout vcitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 5.4 2023-06-03 04:35:16 Deep Dive
CVE-2023-2299 Online Booking & Scheduling Calendar for WordPress by vcita <= 4.4.2 - Missing Authorization on REST-API vcitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 5.3 2023-06-03 04:35:14 Deep Dive
CVE-2022-46816 WordPress Booking Ultra Pro Plugin <= 1.1.4 is vulnerable to Cross Site Request Forgery (CSRF) Booking Ultra ProBooking Ultra Pro Appointments Booking Calendar Plugin Medium 4.3 2023-05-24 15:45:23 Deep Dive
CVE-2023-27918 WordPress plugin Appointment and Event Booking Calendar for WordPress 跨站脚本漏洞 TMSAppointment and Event Booking Calendar for WordPress - Amelia 中危 -2023-05-10 00:00:00 Deep Dive
CVE-2023-24402 WordPress WP Booking System Plugin <= 2.0.18 is vulnerable to Cross Site Scripting (XSS) Veribo, Roland MurgWP Booking System – Booking Calendar Medium 5.9 2023-04-07 08:48:20 Deep Dive
CVE-2022-47438 WordPress Booking calendar, Appointment Booking System Plugin <= 3.2.3 is vulnerable to Cross Site Scripting (XSS) WpDevArtBooking calendar, Appointment Booking System Medium 5.9 2023-03-29 12:29:04 Deep Dive
CVE-2023-24388 WordPress Booking calendar, Appointment Booking System Plugin <= 3.2.3 is vulnerable to Cross Site Request Forgery (CSRF) WpDevArtBooking calendar, Appointment Booking System Medium 5.4 2023-02-17 14:25:11 Deep Dive
CVE-2022-3982 Booking Calendar < 3.2.2 - Unauthenticated Arbitrary File Upload UnknownBooking calendar, Appointment Booking System 超危 -2022-12-12 17:54:48 Deep Dive
CVE-2022-45824 WordPress Advanced Booking Calendar Plugin <= 1.7.1 is vulnerable to Cross Site Request Forgery (CSRF) Advanced Booking CalendarAdvanced Booking Calendar Medium 5.4 2022-12-05 11:07:32 Deep Dive
CVE-2022-45822 WordPress Advanced Booking Calendar Plugin <= 1.7.1 is vulnerable to SQL Injection Advanced Booking CalendarAdvanced Booking Calendar Critical 10.0 2022-12-05 10:57:54 Deep Dive
CVE-2022-43482 WordPress Appointment Booking Calendar plugin <= 1.3.69 - Missing Authorization vulnerability CodePeopleAppointment Booking Calendar (WordPress plugin) Medium 4.3 2022-11-18 19:03:50 Deep Dive
CVE-2022-33177 WordPress Booking Calendar plugin <= 9.2.1 - Cross-Site Request Forgery (CSRF) vulnerabiulity WPdevelop/OpluginsBooking Calendar (WordPress plugin) Medium 5.4 2022-09-06 17:18:54 Deep Dive
CVE-2022-1463 Booking Calendar <= 9.1 - PHP Object Injection via Shortcode wpdevelopBooking Calendar High 8.8 2022-05-10 19:37:41 Deep Dive
CVE-2022-1007 Advanced Booking Calendar < 1.7.1 - Reflected Cross-Site Scripting UnknownAdvanced Booking Calendar 中危 -2022-04-11 14:41:06 Deep Dive
CVE-2022-1006 Advanced Booking Calendar < 1.7.1 - Admin+ SQLi UnknownAdvanced Booking Calendar 高危 -2022-04-11 14:41:04 Deep Dive
CVE-2022-0825 Amelia < 1.0.49 - Customer+ Arbitrary Appointments Status Update UnknownAmelia – Events & Appointments Booking Calendar 中危 -2022-04-04 15:35:49 Deep Dive
CVE-2022-0709 Booking Package < 1.5.29 - Unauthenticated Sensitive Data Disclosure UnknownBooking Package – Appointment Booking Calendar System 高危 -2022-04-04 15:35:47 Deep Dive
CVE-2022-0720 Amelia < 1.0.47 - Customer+ Arbitrary Appointments Update and Sensitive Data Disclosure UnknownAmelia – Events & Appointments Booking Calendar 中危 -2022-03-28 17:23:18 Deep Dive
CVE-2022-0834 Amelia <= 1.0.46 - Stored Cross Site Scripting via lastName ameliabookingBooking for Appointments and Events Calendar – Amelia High 7.2 2022-03-23 19:46:49 Deep Dive
CVE-2022-0739 BookingPress < 1.0.11 - Unauthenticated SQL Injection UnknownBookingPress – Appointments Booking Calendar Plugin and Online Scheduling Plugin 超危 -2022-03-21 18:56:00 Deep Dive