CVE-2023-51525 WordPress WP Simple Booking Calendar plugin <= 2.0.8.4 - Cross Site Request Forgery (CSRF) vulnerability

🗓️ 15 Mar 2024 14:06:36Reported by PatchstackType

WordPress Simple Booking Calendar plugin CSRF vulnerability CVE-2023-51525

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2023-51525	15 Mar 202414:15	–	attackerkb
Circl	CVE-2023-51525	15 Mar 202415:22	–	circl
CNNVD	WordPress plugin WP Simple Booking Calendar Cross-Site Request Forgery Vulnerability	15 Mar 202400:00	–	cnnvd
CVE	CVE-2023-51525	15 Mar 202414:06	–	cve
NVD	CVE-2023-51525	15 Mar 202414:15	–	nvd
Patchstack	WordPress WP Simple Booking Calendar Plugin <= 2.0.8.4 is vulnerable to Cross Site Request Forgery (CSRF)	27 Dec 202300:00	–	patchstack
Positive Technologies	PT-2024-14179 · WordPress · Wp Simple Booking Calendar	15 Mar 202400:00	–	ptsecurity
RedhatCVE	CVE-2023-51525	23 May 202502:18	–	redhatcve
Vulnrichment	CVE-2023-51525 WordPress WP Simple Booking Calendar plugin <= 2.0.8.4 - Cross Site Request Forgery (CSRF) vulnerability	15 Mar 202414:06	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (December 18, 2023 to December 31, 2023)	5 Jan 202413:20	–	wordfence

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "wp-simple-booking-calendar",
    "product": "WP Simple Booking Calendar",
    "vendor": "Veribo, Roland Murg",
    "versions": [
      {
        "changes": [
          {
            "at": "2.0.8.5",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "2.0.8.4",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/wp-simple-booking-calendar/wordpress-wp-simple-booking-calendar-plugin-2-0-8-4-cross-site-request-forgery-csrf-vulnerability

28 Apr 2026 16:09Current

6.9Medium risk

Vulners AI Score6.9

CVSS 3.14.3

EPSS0.00049

CWE-352