CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

CVE•added 2026/03/05 5:53 a.m.•6 views

CVE-2025-68515

CVE-2025-68515 affects the WordPress plugin WP Booking System (Roland Murg) up to version 2.0.19.12. The issue is an information disclosure flaw caused by insertion of sensitive data into sent data, enabling retrieval of embedded sensitive data. There is no explicit exploitation status in the pro...

5.8CVSS5.9AI score0.00041EPSS

Exploits0References1

Vulnrichment•added 2026/03/05 5:53 a.m.•0 views

CVE-2025-68515 WordPress WP Booking System plugin <= 2.0.19.12 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Roland Murg WP Booking System wp-booking-system allows Retrieve Embedded Sensitive Data.This issue affects WP Booking System: from n/a through = 2.0.19.12...

5.8CVSS5.8AI score0.00041EPSS

Exploits0References1

Patchstack•added 2026/03/04 7:11 a.m.•3 views

WordPress WP Booking System plugin <= 2.0.19.12 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by benzdeus in WordPress Plugin WP Booking System versions = 2.0.19.12...

5.8CVSS5.9AI score0.00041EPSS

Exploits0Affected Software1

CNNVD•added 2024/10/29 12:0 a.m.•2 views

WordPress plugin WP Booking System 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

6.5CVSS6.3AI score0.00508EPSS

Exploits0References1

Patchstack•added 2024/10/24 12:0 a.m.•10 views

WordPress WP Booking System Plugin <= 2.0.19.10 is vulnerable to Broken Access Control

Software WP Booking System Type Plugin Vulnerable versions = 2.0.19.10 Fixed in 2.0.19.11 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-50425 Patch priority High CVSS severity High 6.5 Developer Claim ownership PSID ad36b04a505d Credits Trương Hữu Phúc...

6.5CVSS6.5AI score0.00508EPSS

Exploits0References2Affected Software1

CVE•added 2023/04/06 1:59 p.m.•34 views

CVE-2023-25062

CVE-2023-25062 is a stored XSS vulnerability in Pinpoint Booking System for WordPress (plugin versions

5.9CVSS5.1AI score0.01483EPSS

Exploits0References1Affected Software1

NVD•added 2023/03/29 1:15 p.m.•11 views

CVE-2022-47438

Auth. editor+ Stored Cross-Site Scripting XSS vulnerability in WpDevArt Booking calendar, Appointment Booking System plugin = 3.2.3 versions...

5.9CVSS5.4AI score0.00177EPSS

Exploits0References1

CNVD•added 2019/10/17 12:0 a.m.•1 views

WordPress booking-system plugin SQL injection vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. booking-system is an online booking system plugin used in it. A SQL injection vulnerability exists in the WordPress booking-system...

8.8CVSS8AI score0.0066EPSS

Exploits1References1

Cvelist•added 2019/10/10 3:52 p.m.•15 views

CVE-2015-9460

The booking-system plugin before 2.1 for WordPress has DOPBSPBackEndTranslation::display SQL injection via the language parameter...

9.3AI score0.0066EPSS

Exploits1References3

OSV•added 2019/05/20 8:29 p.m.•1 views

CVE-2019-12239

The WP Booking System plugin 1.5.1 for WordPress has no CSRF protection, which allows attackers to reach certain SQL injection issues that require administrative access...

7.2CVSS7.1AI score0.0012EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by