Vulnerabilities and security researches forwp-time-slots-booking-form wp-time-slots-booking-form

Jun 07, 2024

CVE, Research URL: CVE-2022-41790
Home page URL: Security reports for WP Time Slots Booking Form
Application: WP Time Slots Booking Form
Date: Jan 17, 2024
Research Description: Missing Authorization vulnerability in CodePeople WP Time Slots Booking Form.This issue affects WP Time Slots Booking Form: from n/a through 1.1.76.
Affected versions: max 1.1.77.
Status: vulnerable

CVE, Research URL: CVE-2023-23971
Home page URL: Security reports for WP Time Slots Booking Form
Application: WP Time Slots Booking Form
Date: Apr 06, 2023
Research Description: Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in CodePeople WP Time Slots Booking Form plugin <= 1.1.81 versions.
Affected versions: max 1.1.82.
Status: vulnerable

CVE, Research URL: CVE-2022-0389
Home page URL: Security reports for WP Time Slots Booking Form
Application: WP Time Slots Booking Form
Date: Mar 07, 2022
Research Description: The WP Time Slots Booking Form WordPress plugin before 1.1.63 does not sanitise and escape Calendar names, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
Affected versions: max 1.1.63.
Status: vulnerable

CVE, Research URL: CVE-2024-33543
Home page URL: Security reports for WP Time Slots Booking Form
Application: WP Time Slots Booking Form
Date: Jun 09, 2024
Research Description: Missing Authorization vulnerability in CodePeople WP Time Slots Booking Form.This issue affects WP Time Slots Booking Form: from n/a through 1.2.06.
Affected versions: max 1.2.07.
Status: vulnerable

Jun 10, 2024

CVE, Research URL: CVE-2024-35734
Home page URL: Security reports for WP Time Slots Booking Form
Application: WP Time Slots Booking Form
Date: Jun 08, 2024
Research Description: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CodePeople WP Time Slots Booking Form allows Stored XSS.This issue affects WP Time Slots Booking Form: from n/a through 1.2.10.
Affected versions: max 1.2.11.
Status: vulnerable

CVE, Research URL: CVE-2023-23895
Home page URL: Security reports for WP Time Slots Booking Form
Application: WP Time Slots Booking Form
Date: Dec 09, 2024
Research Description: Missing Authorization vulnerability in CodePeople WP Time Slots Booking Form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Time Slots Booking Form: from n/a through 1.1.82.
Affected versions: max 1.1.83.
Status: vulnerable

Jun 11, 2024

CVE, Research URL: CVE-2024-35735
Home page URL: Security reports for WP Time Slots Booking Form
Application: WP Time Slots Booking Form
Date: Jun 10, 2024
Research Description: Missing Authorization vulnerability in CodePeople WP Time Slots Booking Form.This issue affects WP Time Slots Booking Form: from n/a through 1.2.11.
Affected versions: max 1.2.12.
Status: vulnerable

Jun 14, 2025

CVE, Research URL: CVE-2025-49332
Home page URL: Security reports for WP Time Slots Booking Form
Application: WP Time Slots Booking Form
Date: Jun 06, 2025
Research Description: Cross-Site Request Forgery (CSRF) vulnerability in codepeople WP Time Slots Booking Form allows Cross Site Request Forgery. This issue affects WP Time Slots Booking Form: from n/a through 1.2.30.
Affected versions: max 1.2.31.
Status: vulnerable

Jan 10, 2026

CVE, Research URL: CVE-2025-68569
Home page URL: Security reports for WP Time Slots Booking Form
Application: WP Time Slots Booking Form
Date: Dec 24, 2025
Research Description: Missing Authorization vulnerability in codepeople WP Time Slots Booking Form wp-time-slots-booking-form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Time Slots Booking Form: from n/a through <= 1.2.38.
Affected versions: max 1.2.38.
Status: vulnerable

Mar 29, 2026

CVE, Research URL: CVE-2026-32432
Home page URL: Security reports for WP Time Slots Booking Form
Application: WP Time Slots Booking Form
Date: Mar 14, 2026
Research Description: Missing Authorization vulnerability in codepeople WP Time Slots Booking Form wp-time-slots-booking-form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Time Slots Booking Form: from n/a through <= 1.2.42.
Affected versions: max 1.2.42.
Status: vulnerable

May 02, 2026

CVE, Research URL: CVE-2026-40791
Home page URL: Security reports for WP Time Slots Booking Form
Application: WP Time Slots Booking Form
Date: -
Research Description: WP Time Slots Booking Form [wp-time-slots-booking-form] < 1.2.47 CVE-2026-40791
Affected versions: max 1.2.47.
Status: vulnerable