All 6 CVE vulnerabilities found in BookingPress, with AI-generated Chinese analysis, references, and POCs.
Vendor: Unknown
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-31910 | WordPress BookingPress plugin <= 1.1.28 - SQL Injection vulnerability CWE-89 | 7.6 | High | 2025-04-01 |
| CVE-2025-24732 | WordPress BookingPress Plugin <= 1.1.25 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.5 | Medium | 2025-01-24 |
| CVE-2024-34799 | WordPress BookingPress plugin <= 1.0.82 - Appointment Duration Manipulation vulnerability CWE-862 | 6.5 | Medium | 2024-06-11 |
| CVE-2023-51405 | WordPress BookingPress plugin <= 1.0.74 - Booking Price Manipulation vulnerability CWE-287 | 5.3 | Medium | 2024-04-24 |
| CVE-2024-31296 | WordPress BookingPress plugin <= 1.0.81 - Insecure Direct Object References (IDOR) vulnerability CWE-639 | 4.3 | Medium | 2024-04-07 |
| CVE-2022-4340 | BookingPress < 1.0.31 - Unauthenticated IDOR in appointment_id | 5.3 | - | 2023-01-02 |
All 6 known CVE vulnerabilities affecting BookingPress with full Chinese analysis, references, and POCs where available.