cleantalk
Vulnerabilities and Security Researches

Conference Scheduler, CVE-2022-0600

CVE, Research URL

CVE-2022-0600

Home page URL

Security reports for Conference Scheduler

Application

Conference Scheduler

Published on
Mar 28, 2022
Research Description
The Conference Scheduler WordPress plugin before 2.4.3 does not sanitize and escape the tab parameter before outputting back in an admin page, leading to a Reflected Cross-Site Scripting.
Affected versions
Min -, max 2.4.4.
Status
vulnerable
Previous vulnerability researches
Conference Scheduler (CVE-2025-5258) , Jun 26, 2025
Conference Scheduler (CVE-2022-0600) , Jun 07, 2024
New vulnerability
FastBook – Responsive Appointment Booking and Scheduling System (CVE-2025-25173) , Jun 27, 2025
Zapier for WordPress (CVE-2025-50010) , Jun 27, 2025
Namasha By Mdesign (CVE-2025-6537) , Jun 27, 2025
Donation Forms by Charitable – Donations Plugin & Fundraising Platform for WordPress (CVE-2025-5275) , Jun 27, 2025
Media Hygiene: Remove or Delete Unused Images and More! (CVE-2025-49979) , Jun 27, 2025