Lucene search
+L

7 matches found

CVE
CVE
added 2025/05/19 4:7 p.m.32 views

CVE-2025-47583

CVE-2025-47583 covers an unauthenticated CSRF vulnerability in the WordPress plugin Salon Booking System, affecting versions up to 10.16. The issue, described as CSRF leading to arbitrary content deletion, is documented across multiple sources (NVD, CVE list, Red Hat advisory, Patchstack). Exploi...

5.4CVSS7.2AI score0.00124EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/04 3:59 p.m.22 views

CVE-2025-32220 WordPress Salon booking system plugin <= 10.30.23 - Broken Access Control vulnerability

Missing Authorization vulnerability in Dimitri Grassi Salon booking system salon-booking-system allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Salon booking system: from n/a through = 10.30.23...

5.4CVSS0.00493EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/06/21 12:0 a.m.15 views

WordPress Salon booking system Plugin <= 9.9 is vulnerable to Arbitrary File Deletion

Software Salon booking system Type Plugin Vulnerable versions = 9.9 Fixed in 10.0 OWASP Top 10 A1: Broken Access Control Classification Arbitrary File Deletion CVE CVE-2024-37231 Patch priority High CVSS severity High 8.6 Developer Claim ownership PSID 096d4dd72ddd Credits LVT-tholv2k Required...

9.1CVSS6.8AI score0.00581EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/06/18 12:0 a.m.18 views

WordPress Salon booking system Plugin <= 10.2 is vulnerable to Arbitrary File Upload

Software Salon booking system Type Plugin Vulnerable versions = 10.2 Fixed in 10.3 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-3229 Patch priority High CVSS severity High 10 Developer Claim ownership PSID 73c749725728 Credits Gibran Abdillah Required privilege...

9.8CVSS6.8AI score0.00854EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/06/07 12:0 a.m.12 views

WordPress Salon booking system Plugin <= 9.9 is vulnerable to Broken Access Control

Software Salon booking system Type Plugin Vulnerable versions = 9.9 Fixed in 10.0 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-4468 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 495ce87718e9 Credits JoanClarke2 Required privile...

5.4CVSS6.6AI score0.00385EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/04/26 12:0 a.m.20 views

WordPress Salon booking system Plugin <= 9.6.5 is vulnerable to Cross Site Scripting (XSS)

Software Salon booking system Type Plugin Vulnerable versions = 9.6.5 Fixed in 9.6.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2439 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 667860bc9aac Credits cyc707 Required...

5.8AI score0.00418EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.47 views

WordPress Salon booking system plugin <= 7.6.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered by Huli Cymetrics in WordPress Salon booking system plugin versions = 7.6.1. Solution Update the WordPress Salon booking system plugin to the latest available version at least 7.6.3...

7.5CVSS1.4AI score0.01431EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder