cleantalk
Vulnerabilities and Security Researches

GetBookingsWP – Appointments Booking Calendar Plugin For WordPress, CVE-2025-31896

CVE, Research URL

CVE-2025-31896

Home page URL

Security reports for GetBookingsWP – Appointments Booking Calendar Plugin For WordPress

Application

GetBookingsWP – Appointments Booking Calendar Plugin For WordPress

Published on
Apr 03, 2025
Research Description
Missing Authorization vulnerability in istmoplugins GetBookingsWP allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects GetBookingsWP: from n/a through 1.1.27.
Affected versions
Min -, max 1.1.27.
Status
vulnerable
Previous vulnerability researches
Author Bio Shortcode (CVE-2025-31731) , Apr 03, 2025
New vulnerability
Easy Query – WP Query Builder (CVE-2025-32120) , Apr 06, 2025
Slider a SlidersPack – Image Slider, Post Slider, ACF Gallery Slider (CVE-2025-32152) , Apr 06, 2025
VG WooCarousel (CVE-2025-32153) , Apr 06, 2025
Woocommerce Products Reorder Drag Drop Multiple Sort – Sortable, Rearrange Products Vagonic (CVE-2025-32236) , Apr 06, 2025
RDP Wiki Embed (CVE-2025-32262) , Apr 06, 2025