cleantalk
Vulnerabilities and Security Researches

Booking for Appointments and Events Calendar – Amelia, CVE-2026-24967

CVE, Research URL

CVE-2026-24967

Home page URL

Security reports for Booking for Appointments and Events Calendar – Amelia

Application

Booking for Appointments and Events Calendar – Amelia

Published on
Feb 03, 2026
Research Description
Missing Authorization vulnerability in ameliabooking Amelia ameliabooking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Amelia: from n/a through <= 1.2.38.
Affected versions
max 1.2.38.
Status
vulnerable
Previous vulnerability researches
Hello Elementor (CVE-2024-31289) , Jun 10, 2024
Envo&#039;s Elementor Templates & Widgets for WooCommerce (CVE-2024-43292) , Aug 20, 2024
Envo&#039;s Elementor Templates & Widgets for WooCommerce (CVE-2024-0766) , Jun 10, 2024
Envo&#039;s Elementor Templates & Widgets for WooCommerce (CVE-2024-35167) , Jun 10, 2024
Envo&#039;s Elementor Templates & Widgets for WooCommerce (CVE-2024-50447) , Oct 27, 2024
New vulnerability
EventPrime – Events Calendar, Bookings and Tickets (CVE-2026-25312) , Mar 29, 2026
Client Invoicing by Sprout Invoices &#8211; Easy Estimates and Invoices for WordPress (CVE-2026-32401) , Mar 29, 2026
E2Pdf &#8211; Export To Pdf Tool for WordPress (CVE-2026-32442) , Mar 29, 2026
WP ERP | Complete HR solution with recruitment &amp; job listings | WooCommerce CRM &amp; Accounting (CVE-2026-31917) , Mar 29, 2026
Electric Enquiries (CVE-2025-14142) , Mar 29, 2026