EUVD-2023-28055

Malicious code in bioql PyPI...

CVE-2023-23991

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WPdevelop / Oplugins Booking Calendar allows SQL Injection.This issue affects Booking Calendar: from n/a through 9.4.3...

CVE-2024-56292

CVE-2024-56292 : WordPress Email Reminders plugin ≤ 2.0.5 has a Stored XSS via improper neutralization of input during web page generation. The issue affects Email Reminders versions from n/a through 2.0.5; root cause is inadequate escaping of user-supplied data in page output, enabling arbitrary...

CVE-2023-23991

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WPdevelop / Oplugins Booking Calendar allows SQL Injection.This issue affects Booking Calendar: from n/a through 9.4.3...

CVE-2023-23991

Summary of CVE-2023-23991 (WordPress Booking Calendar plugin) : The vulnerability affects the Booking Calendar plugin for WordPress, specifically versions up to and including 9.4.3. It is caused by improper neutralization of certain elements in SQL queries, resulting in a SQL Injection. The issue...

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPdevelop / Oplugins WP Booking Calendar allows Stored XSS.This issue affects WP Booking Calendar: from n/a before 9.7.4...

CVE-2023-51520

CVE-2023-51520 affects the WordPress plugin WP Booking Calendar (WordPress plugin) prior to version 9.7.4 . The issue is an Improper Neutralization of Input During Web Page Generation (Stored XSS) in the plugin, allowing attackers to inject malicious scripts into a website. The vulnerability is m...

CVE-2023-51520 WordPress Booking Calendar Plugin < 9.7.4 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPdevelop / Oplugins WP Booking Calendar allows Stored XSS.This issue affects WP Booking Calendar: from n/a before 9.7.4...

CVE-2023-50840

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in wpdevelop, oplugins Booking Manager.This issue affects Booking Manager: from n/a through 2.1.5...

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in wpdevelop, oplugins Booking Manager.This issue affects Booking Manager: from n/a through 2.1.5...

CVE-2023-50840 WordPress Booking Manager Plugin <= 2.1.5 is vulnerable to SQL Injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in wpdevelop, oplugins Booking Manager.This issue affects Booking Manager: from n/a through 2.1.5...

CVE-2023-50840

CVE-2023-50840 is a WordPress Booking Manager plugin vulnerability. The issue is an SQL Injection in the Booking Manager component, exploitable via a shortcode and requiring at least Authenticated (Contributor+) access. Affected versions are Booking Manager: from n/a through 2.1.5. Vendors have r...

CVE-2022-33177

Cross-Site Request Forgery CSRF vulnerability in WPdevelop/Oplugins Booking Calendar plugin = 9.2.1 at WordPress leading to Translations Update...

CVE-2022-33177

CVE-2022-33177 concerns WPdevelop/Oplugins Booking Calendar plugin for WordPress (versions

PT-2022-21726 · WordPress · Wpdevelop/Oplugins Booking Calendar

Name of the Vulnerable Software and Affected Versions: WPdevelop/Oplugins Booking Calendar plugin versions prior to 9.2.1 Description: A Cross-Site Request Forgery CSRF issue exists, allowing unauthorized actions related to Translations Update. Recommendations: For WPdevelop/Oplugins Booking...

WordPress Booking Calendar 8.4.3 Plugin - Authenticated SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Wordpress Booking Calendar v8.4.3 - Authenticated SQL Injection Vulnerability Exploit Author: B0UG Vendor Homepage: https://wpbookingcalendar.com/ Software Link: https://wordpress.org/plugins/booking/ Version: Tested on version...