CVE-2019-14936

CVE-2019-14936 affects the WordPress plugin Easy!Appointments version 1.3.2. The vulnerability allows disclosure of sensitive information: usernames and password hashes. Public sources describe it as an information disclosure flaw in Easy!Appointments 1.3.2, with advisories noting a configuration...

PT-2019-13878 · WordPress · Easyappointments

Name of the Vulnerable Software and Affected Versions: Easy!Appointments plugin for WordPress version 1.3.2 Description: The issue allows for Sensitive Information Disclosure, specifically exposing usernames and password hashes. Recommendations: For Easy!Appointments plugin for WordPress version...

academicappointments.co.uk XSS vulnerability

Open Bug Bounty ID: OBB-697455 Description| Value ---|--- Affected Website:| academicappointments.co.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3...

Joomla! SquadManagement 1.0.3 SQL Injection

Exploit Title: Joomla! Component SquadManagement 1.0.3 - SQL Injection Dork: N/A Date: 16.02.2018 Vendor Homepage: http://www.larshildebrandt.de/ Software Link: https://extensions.joomla.org/extensions/extension/sports-a-games/sports/squadmanagement/ Software Download:...

Easy!Appointments v1.2.1 Multiple Stored XSS Vulnerabilities

Summary Easy!Appointments is a highly customizable web application that allows your customers to book appointments with you via the web. Moreover, it provides the ability to sync your data with Google Calendar so you can use them with other services. It is an open source project and you can...

Easy!Appointments 1.2.1 Cross Site Scripting

Easy!Appointments v1.2.1 Multiple Stored XSS Vulnerabilities Vendor: Alex Tselegidis Product web page: http://www.easyappointments.org Affected version: 1.2.1 Summary: Easy!Appointments is a highly customizable web application that allows your customers to book appointments with you via the web...

WordPress Easy Appointments 1.2.1 Plugin - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Easy!Appointments v1.2.1 Multiple Stored XSS Vulnerabilities Vendor: Alex Tselegidis Product web page: http://www.easyappointments.org Affected version: 1.2.1 Summary: Easy!Appointments is a highly customizable web application that allows your...

Easy!Appointments 1.2.1 - Cross-Site Scripting

Easy!Appointments 1.2.1 - Cross-Site Scripting Easy!Appointments v1.2.1 Multiple Stored XSS Vulnerabilities Vendor: Alex Tselegidis Product web page: http://www.easyappointments.org Affected version: 1.2.1 Summary: Easy!Appointments is a highly customizable web application that allows your...

Easy!Appointments v1.2.1 Multiple Stored XSS Vulnerabilities

Summary Easy!Appointments is a highly customizable web application that allows your customers to book appointments with you via the web. Moreover, it provides the ability to sync your data with Google Calendar so you can use them with other services. It is an open source project and you can...

Easy!Appointments 1.2.1 - Cross-Site Scripting

Easy!Appointments v1.2.1 Multiple Stored XSS Vulnerabilities Vendor: Alex Tselegidis Product web page: http://www.easyappointments.org Affected version: 1.2.1 Summary: Easy!Appointments is a highly customizable web application that allows your customers to book appointments with you via the web...

minervaappointments.com XSS vulnerability

Open Bug Bounty ID: OBB-449362 Description| Value ---|--- Affected Website:| minervaappointments.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

WordPress Appointments 2.2.2.2 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Credit Ricardo Sanchez Vulnerable Appointments Plugin 2.2.2.2 Appointments Plugin is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to...

WordPress Appointments 2.2.2.2 Cross Site Scripting

Class Input Validation Error Remote Yes Credit Ricardo Sanchez Vulnerable Appointments Plugin 2.2.2.2 Appointments Plugin is prone to a stored cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary...

WordPress Easy Appointments Plugin < 1.12.0 XSS Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:easyappointmentsproject:easyappointments"; if description...

WordPress Easy Appointments plugin <=1.11.7 - Cross-Site Scripting (XSS) vulnerability

Cross-Site Scripting XSS vulnerability found in WordPress Easy Appointments plugin versions =1.11.7. Solution Update the WordPress Easy Appointments plugin to the latest available version at least 1.12.0...

CVE-2017-15812

The Easy Appointments plugin before 1.12.0 for WordPress has XSS via a Settings values in the admin panel...

Design/Logic Flaw

The Easy Appointments plugin before 1.12.0 for WordPress has XSS via a Settings values in the admin panel...

CVE-2017-15812

The Easy Appointments plugin before 1.12.0 for WordPress has XSS via a Settings values in the admin panel...

CVE-2017-15812

The Easy Appointments plugin before 1.12.0 for WordPress has XSS via a Settings values in the admin panel...

CVE-2017-15812

CVE-2017-15812 concerns the WordPress plugin Easy Appointments (before 1.12.0). The vulnerability is a cross-site scripting (XSS) flaw in the admin panel’s Settings values, allowing injection via the settings UI. The issue is evidenced across multiple sources in the connected documents, which con...