cleantalk
Vulnerabilities and Security Researches

Appointment & Event Booking Calendar Plugin – Webba Booking, CVE-2025-54036

CVE, Research URL

CVE-2025-54036

Home page URL

Security reports for Appointment & Event Booking Calendar Plugin – Webba Booking

Application

Appointment & Event Booking Calendar Plugin – Webba Booking

Published on
Jul 16, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Webba Appointment Booking Webba Booking allows Cross Site Request Forgery. This issue affects Webba Booking: from n/a through 5.1.20.
Affected versions
Min -, max 5.1.21.
Status
vulnerable
Previous vulnerability researches
eHive Account Details (5a1ac2bfb25451558629aa1cce94249ff4f9b6f4) , Jun 07, 2024
eHive Account Details (CVE-2013-6837) , Jun 07, 2024
New vulnerability
Connect to external APIs | Custom endpoints for WP (CVE-2025-54048) , Jul 21, 2025
Front-end Editor (CVE-2012-10019) , Jul 21, 2025
JetFormBuilder — Dynamic Blocks Form Builder (CVE-2025-53990) , Jul 20, 2025
WPshop 2 – E-Commerce (CVE-2015-10135) , Jul 20, 2025
Maya Business Plugin (CVE-2025-53208) , Jul 20, 2025