4 matches found
CVE-2026-48882 WordPress WP Time Slots Booking Form plugin <= 1.2.50 - SQL Injection vulnerability
Subscriber SQL Injection in WP Time Slots Booking Form = 1.2.50 versions...
CVE-2026-48882
CVE-2026-48882 is a SQL Injection vulnerability in WordPress Plugin WP Time Slots Booking Form (versions
CVE-2026-24382
CVE-2026-24382 concerns WordPress theme News Magazine X (versions up to and including 1.2.50). The issue is described as a Missing Authorization vulnerability caused by incorrectly configured access control, allowing unauthorized access on affected pages. CVSS v3.1 vector: AV:N/AC:L/PR:N/UI:N/S:U...
PT-2026-27858
Name of the Vulnerable Software and Affected Versions News Magazine X versions through 1.2.50 Description An authorization issue exists in News Magazine X, allowing exploitation of incorrectly configured access control security levels. Recommendations Update News Magazine X to a version later tha...