EUVD-2025-2940

Malicious code in bioql PyPI...

CVE-2025-22719

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in e4jvikwp VikAppointments Services Booking Calendar vikappointments allows Stored XSS.This issue affects VikAppointments Services Booking Calendar: from n/a through = 1.2.16...

CVE-2025-22719

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in e4jvikwp VikAppointments Services Booking Calendar vikappointments allows Stored XSS.This issue affects VikAppointments Services Booking Calendar: from n/a through = 1.2.16...

CVE-2025-22719 WordPress VikAppointments Services Booking Calendar plugin <= 1.2.16 - CSRF to Stored XSS vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in e4jvikwp VikAppointments Services Booking Calendar vikappointments allows Stored XSS.This issue affects VikAppointments Services Booking Calendar: from n/a through = 1.2.16...

CVE-2025-22719

CVE-2025-22719 is a Stored XSS in VikAppointments Services Booking Calendar (E4J s.r.l.) across VikAppointments versions up to 1.2.16 (no details beyond that). Public sources (Red Hat, ENISA EUVD, Patchstack) describe it as Improper Neutralization of Input During Web Page Generation (XSS) with CV...

CVE-2025-22719 WordPress VikAppointments Services Booking Calendar plugin <= 1.2.16 - CSRF to Stored XSS vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in e4jvikwp VikAppointments Services Booking Calendar vikappointments allows Stored XSS.This issue affects VikAppointments Services Booking Calendar: from n/a through = 1.2.16...

PT-2025-4646 · Unknown · Vikappointments Services Booking Calendar

Name of the Vulnerable Software and Affected Versions: VikAppointments Services Booking Calendar versions 1.2.16 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows stored Cross-site Scripting XSS. This means an attacker can...

WordPress plugin VikAppointments Services Booking Calendar 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in PHP. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in WordPress plugin...

WordPress VikAppointments Services Booking Calendar plugin <= 1.2.16 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin VikAppointments Services Booking Calendar versions = 1.2.16...