Medium 5.3
2026-04-24< 1.2.64
CVE-2026-6810
Booking Calendar Contact Form
Minimum safe version
1.2.64
Update to 1.2.64 or later to address 15 fixable vulnerabilities
Latest available1.2.65 ✓
Medium 5.3
2025-11-22< 1.2.61
CVE-2025-13318
Medium 6.5
2025-07-04< 1.2.59
CVE-2025-48231
Medium 5.9
2025-01-24< 1.2.56
CVE-2025-24723
High 7.1
2023-07-18< 1.2.41
CVE-2023-36384
Medium 4.3
2024-12-09< 1.2.35
CVE-2023-25037
N/A
2016-02-08< 1.0.24
Booking Calendar Contact Form <= 1.0.23 - Shortcode SQL Injection
N/A
2015-05-13< 1.0.3
WordPress Booking Calendar Contact Form Plugin 1.0.2 - Multiple vulnerabilities
N/A
2016-01-25< 1.1.24
WordPress Booking Calendar Contact Form Plugin 1.1.23 - Unauthenticated SQL Injection
N/A
2016-01-26< 1.1.24
WordPress Booking Calendar Contact Form Plugin 1.1.23 - Shortcode SQL Injection
N/A
2016-01-27< 1.1.25
WordPress Booking Calendar Contact Form Plugin 1.1.24 - Multiple Vulnerabilities
N/A
2016-01-27< 1.1.25
WordPress Booking Calendar Contact Form Plugin 1.1.24 - Addslashes SQL Injection
N/A
2016-02-08< 1.0.24
WordPress Booking Calendar Contact Form Plugin 1.0.23 - Multiple Vulnerabilities
Critical 9.8
2019-08-21< 1.0.24
CVE-2016-10909
Medium 6.1
2019-08-21< 1.0.24
CVE-2016-10908