cleantalk
Vulnerabilities and Security Researches

EzyOnlineBookings Online Booking System Widget, CVE-2024-51628

CVE, Research URL

CVE-2024-51628

Home page URL

Security reports for EzyOnlineBookings Online Booking System Widget

Application

EzyOnlineBookings Online Booking System Widget

Published on
Nov 09, 2024
Research Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in EzyOnlineBookings EzyOnlineBookings Online Booking System Widget allows DOM-Based XSS.This issue affects EzyOnlineBookings Online Booking System Widget: from n/a through 1.3.
Affected versions
Min -, max 1.3.
Status
vulnerable
Previous vulnerability researches
EzyOnlineBookings Online Booking System Widget (CVE-2024-51628) , Nov 04, 2024
Booking System Trafft (CVE-2024-11754) , Dec 15, 2024
Course Booking System (CVE-2025-32253) , Apr 06, 2025
Course Booking System (CVE-2025-22785) , Jan 17, 2025
Course Booking System (CVE-2025-32508) , Apr 19, 2025
New vulnerability
Glossary by WPPedia – Best Glossary plugin for WordPress (CVE-2025-4803) , May 28, 2025
Import Social Events (CVE-2025-48256) , May 28, 2025
MStore API (CVE-2025-4683) , May 28, 2025
WP Statistics , May 27, 2025
Hostinger , May 27, 2025