cleantalk
Vulnerabilities and Security Researches

Salon booking system, CVE-2022-0920

CVE, Research URL

CVE-2022-0920

Home page URL

Security reports for Salon booking system

Application

Salon booking system

Published on
Apr 11, 2022
Research Description
The Salon booking system Free and Pro WordPress plugins before 7.6.3 do not have proper authorisation in some of its endpoints, which could allow customers to access all bookings and other customer's data
Affected versions
Min -, max 7.6.3.
Status
vulnerable
Previous vulnerability researches
Salon booking system (CVE-2025-31560) , Apr 04, 2025
Salon booking system (CVE-2024-37231) , Jun 25, 2024
Salon booking system (CVE-2022-4974) , Nov 15, 2024
Salon booking system (CVE-2024-9882) , Nov 17, 2024
Salon booking system (CVE-2024-4468) , Jun 10, 2024
New vulnerability
Ebook Store (CVE-2025-54702) , Aug 05, 2025
Connect to external APIs | Custom endpoints for WP (CVE-2025-54049) , Aug 05, 2025
WP Import Export Lite (CVE-2025-5061) , Aug 05, 2025
WP Import Export Lite (CVE-2025-6207) , Aug 05, 2025
Custom Post Type UI , Aug 05, 2025