cleantalk
Vulnerabilities and Security Researches

Salon booking system, CVE-2025-47583

CVE, Research URL

CVE-2025-47583

Home page URL

Security reports for Salon booking system

Application

Salon booking system

Published on
May 19, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Dimitri Grassi Salon booking system salon-booking-system allows Cross Site Request Forgery.This issue affects Salon booking system: from n/a through <= 10.16.
Affected versions
max 10.17.
Status
vulnerable
Previous vulnerability researches
Timetics- AI-powered Appointment Booking with Visual Seat Plan and ultimate Calendar Scheduling (CVE-2024-37427) , Jul 02, 2024
Timetics- AI-powered Appointment Booking with Visual Seat Plan and ultimate Calendar Scheduling (CVE-2025-15473) , Mar 30, 2026
Timetics- AI-powered Appointment Booking with Visual Seat Plan and ultimate Calendar Scheduling (CVE-2024-11275) , Dec 15, 2024
Timetics- AI-powered Appointment Booking with Visual Seat Plan and ultimate Calendar Scheduling (CVE-2024-43923) , Aug 29, 2024
Timetics- AI-powered Appointment Booking with Visual Seat Plan and ultimate Calendar Scheduling (CVE-2026-39432) , Apr 27, 2026
New vulnerability
XT Floating Cart for WooCommerce (CVE-2023-33999) , Jun 14, 2026
Child Support Calculator (CVE-2023-33999) , Jun 14, 2026
WP Required Taxonomies &#8211; Categories and Tags Mandatory (CVE-2023-33999) , Jun 14, 2026
Pods &#8211; Custom Content Types and Fields (CVE-2023-33999) , Jun 14, 2026
Slider, Gallery, and Carousel by MetaSlider &#8211; Responsive WordPress Slideshows (CVE-2022-47150) , Jun 14, 2026