Booking Calendar@2.1.7 Security Vulnerabilities and Issues — Booking Calendar@2.1.7 CVE List

Lucene search

Booking Calendar ProjectBooking Calendar2.1.7

4 matches found

CVE•added 2018/01/13 12:29 a.m.•38 views

CVE-2018-5673

An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. CSRF exists via wp-admin/admin.php.

8.8CVSS8.6AI score0.00309EPSS

CVE•added 2018/01/13 12:29 a.m.•37 views

CVE-2018-5670

An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php sale_conditions[count][] parameter.

4.8CVSS4.9AI score0.00225EPSS

CVE•added 2018/01/13 12:29 a.m.•36 views

CVE-2018-5671

An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php extra_field1[items][field_item1][price_percent] parameter.

4.8CVSS4.9AI score0.00206EPSS

CVE•added 2018/01/13 12:29 a.m.•34 views

CVE-2018-5672

An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php form_field5[label] parameter.

4.8CVSS4.9AI score0.00225EPSS