| CVE/PSC | Application | Date | Affected versions | Description |
|---|---|---|---|---|
| Actual on: Jul 14, 2025, 22:07:01 | Entries count: 4 | |||
|
Smart Agenda – Prise de rendez-vous en ligne
vulnerable
|
Jan 14, 2025, 17:01:11 |
Min -
Max 4.7
|
Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-22506 Reason: This candidate is a reservation duplicate of CVE-2025-22506. Notes: All CVE users should reference CVE-2025-22506 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. | |
|
Smart Agenda – Prise de rendez-vous en ligne
vulnerable
|
Jul 02, 2025, 23:07:22 |
Min -
Max 5.0
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Smart Agenda Smart Agenda allows Stored XSS. This issue affects Smart Agenda: from n/a through 4.9. | |
|
Smart Agenda – Prise de rendez-vous en ligne
vulnerable
|
Dec 13, 2024, 09:12:48 |
Min -
Max 4.7
|
The Smart Agenda – Prise de rendez-vous en ligne plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'smartagenda' shortcode in all versions up to, and including, 4.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. | |
|
Smart Agenda – Prise de rendez-vous en ligne
vulnerable
|
Jan 12, 2025, 00:01:42 |
Min -
Max 4.8
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SmartAgenda Smart Agenda allows Stored XSS.This issue affects Smart Agenda: from n/a through 4.7. | |