Lucene search

Booking Calendar Security Vulnerabilities

cve

CVE-2017-18555

The booking-sms plugin before 1.1.0 for WordPress has...

6.1CVSS

6.9AI Score

0.001EPSS

2019-08-21 01:15 PM

cve

CVE-2018-20556

SQL injection vulnerability in Booking Calendar plugin 8.4.3 for WordPress allows remote attackers to execute arbitrary SQL commands via the booking_id...

8.8CVSS

9.2AI Score

0.081EPSS

2019-03-21 04:00 PM

cve

CVE-2018-10363

An issue was discovered in the WpDevArt "Booking calendar, Appointment Booking System" plugin 2.2.2 for WordPress. Multiple parameters allow remote attackers to manipulate the values to change data such as...

7.5CVSS

7AI Score

0.002EPSS

2018-06-13 06:29 PM

cve

CVE-2018-5672

An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php form_field5[label]...

4.8CVSS

6.2AI Score

0.001EPSS

2018-01-13 12:29 AM

cve

CVE-2018-5671

An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php extra_field1[items][field_item1][price_percent]...

4.8CVSS

6.2AI Score

0.001EPSS

2018-01-13 12:29 AM

cve

CVE-2018-5673

An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. CSRF exists via...

8.8CVSS

9AI Score

0.002EPSS

2018-01-13 12:29 AM

cve

CVE-2018-5670

An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php sale_conditions[count][]...

4.8CVSS

6.2AI Score

0.001EPSS

2018-01-13 12:29 AM