cleantalk
Vulnerabilities and Security Researches

Court Reservation – Manage Your Court Bookings Online, CVE-2026-1508

CVE, Research URL

CVE-2026-1508

Home page URL

Security reports for Court Reservation – Manage Your Court Bookings Online

Application

Court Reservation – Manage Your Court Bookings Online

Published on
Mar 10, 2026
Research Description
The Court Reservation WordPress plugin before 1.10.9 does not have CSRF check in place when deleting events, which could allow attackers to make a logged in admin delete them via a CSRF attack
Affected versions
max 1.10.9.
Status
vulnerable
Previous vulnerability researches
Skyword API Plugin (CVE-2024-11907) , Jan 10, 2025
Skyword API Plugin (CVE-2025-58703) , Apr 25, 2026
New vulnerability
Newsletter – Send awesome emails from WordPress (CVE-2025-3582) , Apr 26, 2026
Carousel, Slider, Gallery by WP Carousel – Image Carousel & Photo Gallery, Post Carousel & Post Grid, Product Car (CVE-2024-4002) , Apr 26, 2026
Court Reservation – Manage Your Court Bookings Online (CVE-2026-1508) , Apr 26, 2026
ITERAS (CVE-2026-4078) , Apr 26, 2026
WP-Recall – Registration, Profile, Commerce & More (CVE-2024-9770) , Apr 26, 2026