CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Wpbookingcalendar: Security Vulnerabilities

CVE-2023-51520

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPdevelop / Oplugins WP Booking Calendar allows Stored XSS.This issue affects WP Booking Calendar: from n/a before 9.7.4.

CVSS Score

6.5

EPSS Score

0.001

Published

2024-02-01

CVE-2023-4620

The Booking Calendar WordPress plugin before 9.7.3.1 does not sanitize and escape some of its booking from data, allowing unauthenticated users to perform Stored Cross-Site Scripting attacks against administrators

CVSS Score

6.1

EPSS Score

0.006

Published

2023-10-16

CVE-2022-33177

Cross-Site Request Forgery (CSRF) vulnerability in WPdevelop/Oplugins Booking Calendar plugin <= 9.2.1 at WordPress leading to Translations Update.

CVSS Score

5.4

EPSS Score

0.001

Published

2022-09-06

Page 2

Vulnerabilities

Vulnerable Software

Wpbookingcalendar: Security Vulnerabilities

Products

Pricing

Contact Us