cleantalk
Vulnerabilities and Security Researches

Booking calendar, Appointment Booking System, CVE-2023-24388

CVE, Research URL

CVE-2023-24388

Home page URL

Security reports for Booking calendar, Appointment Booking System

Application

Booking calendar, Appointment Booking System

Published on
Feb 17, 2023
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in WpDevArt Booking calendar, Appointment Booking System plugin <= 3.2.3 versions affects plugin forms actions (create, duplicate, edit, delete).
Affected versions
max 3.2.4.
Status
vulnerable
Previous vulnerability researches
Multi-day Booking Calendar (CVE-2024-51873) , Nov 12, 2024
Booking Calendar and Notification (CVE-2024-13746) , Mar 03, 2025
Booking Calendar and Notification (CVE-2025-31381) , Apr 06, 2025
Booking Calendar and Notification (CVE-2025-31403) , Apr 06, 2025
Booking Calendar Contact Form (CVE-2025-13318) , Dec 11, 2025
New vulnerability
BackWPup &#8211; WordPress Backup Plugin (CVE-2025-15041) , Mar 29, 2026
hCaptcha for WordPress (CVE-2026-25315) , Mar 29, 2026
Breeze &#8211; WordPress Cache Plugin (CVE-2025-13864) , Mar 29, 2026
SMTP Mailer (CVE-2026-32538) , Mar 29, 2026
Best WordPress Gallery Plugin – FooGallery (CVE-2026-25362) , Mar 29, 2026