Online Booking & Scheduling Calendar for WordPress by vcita, CVE-2025-54677

CVE, Research URL: CVE-2025-54677
Home page URL: Security reports for Online Booking & Scheduling Calendar for WordPress by vcita
Application: Online Booking & Scheduling Calendar for WordPress by vcita
Published on: Aug 20, 2025
Research Description: Unrestricted Upload of File with Dangerous Type vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by vcita allows Using Malicious Files. This issue affects Online Booking & Scheduling Calendar for WordPress by vcita: from n/a through 4.5.3.
Affected versions: Min -, max 4.5.5.
Status: vulnerable

Online Booking &amp; Scheduling Calendar for WordPress by vcita, CVE-2025-54677