Shiptrack Booking Calendar And Notification vulnerabilities
2 known vulnerabilities affecting shiptrack/booking_calendar_and_notification.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-31403P2CRITICALCVSS 9.3≤ 4.0.32025-04-04
CVE-2025-31403 [CRITICAL] CWE-89 CVE-2025-31403: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in shiptrack Booking Calendar and Notification booking-calendar-and-notification allows Blind SQL Injection.This issue affects Booking Calendar and Notification: from n/a through <= 4.0.3.
nvd
CVE-2025-31381P4MEDIUMCVSS 6.5≤ 4.0.32025-04-04
CVE-2025-31381 [MEDIUM] CWE-862 CVE-2025-31381: Missing Authorization vulnerability in shiptrack Booking Calendar and Notification booking-calendar-
Missing Authorization vulnerability in shiptrack Booking Calendar and Notification booking-calendar-and-notification allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Booking Calendar and Notification: from n/a through <= 4.0.3.
nvd