Advanced Booking Calendar — Plugin Vulnerabilities

N/A Closed

2023-10-30< 3.2.12

WordPress Advanced Booking Calendar Plugin <= 3.2.11 is vulnerable to SQL Injection

Patchstack

N/A Closed

2020-10-22< 1.6.2

Advanced Booking Calendar <= 1.6.1 - Unauthenticated SQL Injection

Wordfence

N/A Unfixed Closed

≤ 1.7.1

WordPress Advanced Booking Calendar Plugin <= 1.7.1 is vulnerable to SQL Injection

Patchstack

N/A Unfixed Closed

≤ 1.7.1

WordPress Advanced Booking Calendar Plugin <= 1.7.1 is vulnerable to Cross Site Request Forgery (CSRF)

Patchstack

Critical 10.0 Unfixed Closed

2022-12-05≤ 1.7.1

CVE-2022-45822

CVE Wordfence WPScan

Medium 5.4 Unfixed Closed

2022-12-05≤ 1.7.1

CVE-2022-45824

CVE Wordfence WPScan

N/A Closed

< 1.6.2

Advanced Booking Calendar < 1.6.2 - Unauthenticated SQL Injection

WPScan

N/A Closed

2020-10-22< 1.6.2

WordPress Advanced Booking Calendar plugin <= 1.6.1 - Unauthenticated SQL Injection (SQLi) vulnerability

Patchstack

High 7.2 Closed

2022-04-11< 1.7.1

CVE-2022-1006

CVE Wordfence WPScan

Medium 6.1 Closed

2022-04-11< 1.7.1

CVE-2022-1007

CVE Wordfence WPScan

Critical 9.8 Closed

2022-03-21< 1.7.0

CVE-2022-0694

CVE Patchstack Wordfence WPScan

Medium 5.4 Closed

2021-04-12< 1.6.7

CVE-2021-24225

CVE Wordfence WPScan

Medium 5.4 Closed

2021-04-22< 1.6.8

CVE-2021-24232

CVE Patchstack Wordfence WPScan