Wpdevelop Oplugins Booking Calendar vulnerabilities
2 known vulnerabilities affecting wpdevelop/oplugins_booking_calendar.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-23991P3HIGHCVSS 7.6≥ n/a, ≤ 9.4.32024-03-26
CVE-2023-23991 [HIGH] CWE-89 CVE-2023-23991: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPdevelop / Oplugins Booking Calendar allows SQL Injection.This issue affects Booking Calendar: from n/a through 9.4.3.
nvd
CVE-2022-33177P4MEDIUMCVSS 4.3≤ 9.2.12022-09-06
CVE-2022-33177 [MEDIUM] CWE-352 CVE-2022-33177: Cross-Site Request Forgery (CSRF) vulnerability in WPdevelop/Oplugins Booking Calendar plugin <= 9.2
Cross-Site Request Forgery (CSRF) vulnerability in WPdevelop/Oplugins Booking Calendar plugin <= 9.2.1 at WordPress leading to Translations Update.
nvd