Vulnerabilities and Security Researches

Vulnerabilities and security researches forspa-and-salon spa-and-salon

Direction: ascending

Jun 10, 2024

Spa and Salon # CVE-2024-31384

CVE, Research URL: CVE-2024-31384
Home page URL: Security reports for Spa and Salon
Application: Spa and Salon
Date: Apr 15, 2024
Research Description: Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Spa and Salon.This issue affects Spa and Salon: from n/a through 1.2.7.
Affected versions: max 1.2.8.
Status: vulnerable

Mar 30, 2026

Spa and Salon # CVE-2026-25374

CVE, Research URL: CVE-2026-25374
Home page URL: Security reports for Spa and Salon
Application: Spa and Salon
Date: Feb 19, 2026
Research Description: Missing Authorization vulnerability in raratheme Spa and Salon spa-and-salon allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spa and Salon: from n/a through <= 1.3.2.
Affected versions: max 1.3.2.
Status: vulnerable