EUVD-2024-19872

Malicious code in bioql PyPI...

CVE-2024-22311

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in N Squared Simply Schedule Appointments allows Reflected XSS.This issue affects Simply Schedule Appointments: from n/a through 1.6.6.20...

WordPress Simply Schedule Appointments Plugin <= 1.6.6.20 is vulnerable to Cross Site Scripting (XSS)

Software Simply Schedule Appointments Type Plugin Vulnerable versions = 1.6.6.20 Fixed in 1.6.6.24 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-22311 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID fb6daf2f8c79 Credits Rafie Muhamma...

PT-2024-19334 · Nsquared · N Squared Simply Schedule Appointments

Name of the Vulnerable Software and Affected Versions: N Squared Simply Schedule Appointments versions 1.6.6.20 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Reflected XSS...

CVE-2024-1760 Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin <= 1.6.6.20 - Cross-Site Request Forgery to Plugin Data Reset

The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.6.6.20. This is due to missing or incorrect nonce validation on the ssafactoryreset function. This makes it...

WordPress Plugin Appointment Booking Calendar Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...