CVE-2023-35913

Cross-Site Request Forgery CSRF vulnerability in OOPSpam OOPSpam Anti-Spam plugin = 1.1.44 versions...

CVE-2022-41687

Insecure inherited permissions in the HotKey Services for some IntelR NUC P14E Laptop Element software for Windows 10 before version 1.1.44 may allow an authenticated user to potentially enable escalation of privilege via local access...

Hardcoded credentials

FlyteAdmin is the control plane for the data processing platform Flyte. Users who enable the default Flyte’s authorization server without changing the default clientid hashes will be exposed to the public internet. In an effort to make enabling authentication easier for Flyte administrators, the...

WordPress Appointment Hour Booking Plugin Cross-Site Scripting Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Appointment Hour Booking plugin is an online booking plugin used in it. A cross-site scripting vulnerability exists in WordPress...

CVE-2019-13505

The Appointment Hour Booking plugin 1.1.44 for WordPress allows XSS via the E-mail field, as demonstrated by email1...

PT-2019-13373 · WordPress · Appointment Hour Booking

Name of the Vulnerable Software and Affected Versions: Appointment Hour Booking plugin version 1.1.44 Description: The issue allows for XSS via the E-mail field. Recommendations: For version 1.1.44, update to a newer version that contains a fix for this issue...