CVE-2024-30516

Improper Validation of Specified Quantity in Input vulnerability in SaasProject Booking Package allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Booking Package: from n/a through 1.6.27...

EUVD-2024-28436

Improper Validation of Specified Quantity in Input vulnerability in SaasProject Booking Package allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Booking Package: from n/a through 1.6.27...

PT-2026-1296

Name of the Vulnerable Software and Affected Versions SaasProject Booking Package versions through 1.6.27 Description An issue exists in SaasProject Booking Package related to improper validation of specified quantity in input, potentially allowing access to functionality not properly constrained...

EUVD-2023-43616

Malicious code in bioql PyPI...

CVE-2023-39918

Unauth. Reflected Cross-Site Scripting XSS vulnerability in SAASPROJECT Booking Package Booking Package plugin = 1.6.01 versions...

CVE-2023-37389

Improper Privilege Management vulnerability in SAASPROJECT Booking Package Booking Package allows Privilege Escalation.This issue affects Booking Package: from n/a through 1.5.98...

CVE-2023-37389 WordPress Booking Package SAASPROJECT plugin <= 1.5.98 - Unauthenticated Privilege Escalation vulnerability

Improper Privilege Management vulnerability in SAASPROJECT Booking Package Booking Package allows Privilege Escalation.This issue affects Booking Package: from n/a through 1.5.98...

CVE-2023-37389

CVE-2023-37389 relates to SAASPROJECT Booking Package Plugin for WordPress, where versions 1.5.98 and earlier suffer an unauthenticated privilege escalation due to improper privilege management. The Patchstack entry confirms the vulnerable component and the root cause as Privilege Escalation with...

CVE-2023-37389 WordPress Booking Package SAASPROJECT plugin <= 1.5.98 - Unauthenticated Privilege Escalation vulnerability

Improper Privilege Management vulnerability in SAASPROJECT Booking Package Booking Package allows Privilege Escalation.This issue affects Booking Package: from n/a through 1.5.98...

PT-2024-12607 · Unknown · Saasproject Booking Package

Name of the Vulnerable Software and Affected Versions: SAASPROJECT Booking Package versions 1.5.98 and earlier Description: The issue is related to Improper Privilege Management, which allows Privilege Escalation in the SAASPROJECT Booking Package. Recommendations: For versions 1.5.98 and earlier...

CVE-2023-39918

Unauth. Reflected Cross-Site Scripting XSS vulnerability in SAASPROJECT Booking Package Booking Package plugin = 1.6.01 versions...

CVE-2023-39918

Unauth. Reflected Cross-Site Scripting XSS vulnerability in SAASPROJECT Booking Package Booking Package plugin = 1.6.01 versions...

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in SAASPROJECT Booking Package Booking Package plugin = 1.6.01 versions...

CVE-2023-39918 WordPress Booking Package Plugin <= 1.6.01 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in SAASPROJECT Booking Package Booking Package plugin = 1.6.01 versions...

CVE-2023-39918

CVE-2023-39918 affects the SAASPROJECT Booking Package WordPress plugin (versions

PT-2023-27153 · Unknown · Saasproject Booking Package

Name of the Vulnerable Software and Affected Versions: SAASPROJECT Booking Package plugin versions = 1.6.01 Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a website, potentially allowing them to...

JVN#68066589: WordPress Plugin "Booking Package - Appointment Booking Calendar System" vulnerable to cross-site scripting

WordPress Plugin "Booking Package - Appointment Booking Calendar System" provided by Saasproject contains a cross-site scripting vulnerability CWE-79 due to the flaw in handling some URL query parameters. Impact An arbitrary script may be executed on the web browser of the user who is accessing t...