Booking Calendar Security Vulnerabilities and Issues — Booking Calendar CVE List

Lucene search

WpdevartBooking Calendar

3 matches found

CVE•added 2022/12/12 6:15 p.m.•68 views

CVE-2022-3982

The Booking calendar, Appointment Booking System WordPress plugin before 3.2.2 does not validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as PHP and achieve RCE

9.8CVSS9.7AI score0.90579EPSS

CVE•added 2024/06/03 10:15 p.m.•47 views

CVE-2023-24373

External Control of Assumed-Immutable Web Parameter vulnerability in WpDevArt Booking calendar, Appointment Booking System allows Manipulating Hidden Fields.This issue affects Booking calendar, Appointment Booking System: from n/a through 3.2.3.

9.8CVSS4.2AI score0.00503EPSS

CVE•added 2023/11/06 8:15 a.m.•31 views

CVE-2022-47428

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WpDevArt Booking calendar, Appointment Booking System allows SQL Injection.This issue affects Booking calendar, Appointment Booking System: from n/a through 3.2.7.

9.8CVSS9.9AI score0.0021EPSS