cleantalk
Vulnerabilities and Security Researches

BA Book Everything, 22f9492c7ee3b011cdb369adc337eea55b1b0321

CVE, Research URL

22f9492c7ee3b011cdb369adc337eea55b1b0321

Home page URL

Security reports for BA Book Everything

Application

BA Book Everything

Published on
Nov 12, 2020
Research Description
BA Book Everything [ba-book-everything] < 1.3.25 WordPress BA Book Everything plugin <= 1.3.24 - Unauthenticated Reflected Cross-Site Scripting (XSS) and Cross-Frame Scripting (XFS) vulnerabilities Unauthenticated Reflected Cross-Site Scripting (XSS) and Cross-Frame Scripting (XFS) vulnerabilities found by Ex.Mi in WordPress BA Book Everything plugin (versions <= 1.3.24).
Affected versions
max 1.3.25.
Status
vulnerable
Previous vulnerability researches
BA Book Everything (CVE-2026-24371) , Feb 27, 2026
BA Book Everything (CVE-2024-32125) , Jun 06, 2024
BA Book Everything (CVE-2024-3672) , Jun 06, 2024
BA Book Everything (CVE-2024-32598) , Jun 06, 2024
BA Book Everything (CVE-2024-32576) , Jun 06, 2024
New vulnerability
Cool Tag Cloud (CVE-2025-69011) , Feb 27, 2026
WP Wizard Cloak (CVE-2025-53237) , Feb 27, 2026
YITH WooCommerce Compare (CVE-2026-22333) , Feb 27, 2026
Kenta Companion (CVE-2026-27090) , Feb 27, 2026
WP-Lister Lite for eBay (CVE-2026-25384) , Feb 27, 2026