Reputeinfosystems Bookingpress

14 CVEs affecting Reputeinfosystems Bookingpress. Latest disclosed: 2025-04-01. Critical: 1, High: 7.

Top CVEs affecting Reputeinfosystems Bookingpress
CVESeverityScorePublishedSummary
CVE-2022-0739Critical9.82022-03-21The BookingPress WordPress plugin before 1.0.11 fails to properly sanitize user supplied POST data before it is used in a dynamically constructed SQL query via…
CVE-2024-6660High8.82024-07-17The BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin plugin for WordPress is vulnerable to unauthorized modification of data tha…
CVE-2024-6467High8.82024-07-17The BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin plugin for WordPress is vulnerable to Arbitrary File Read to Arbitrary File…
CVE-2023-50841High8.52023-12-28Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Repute Infosystems BookingPress – Appointment Booking Cal…
CVE-2023-51405High8.22024-04-24Improper Authentication vulnerability in Repute Infosystems BookingPress allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Boo…
CVE-2025-31910High7.62025-04-01Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in reputeinfosystems BookingPress bookingpress-appointment-b…
CVE-2024-3022High7.22024-04-04The BookingPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient filename validation in the 'bookingpress_process_upload' func…
CVE-2023-6219High7.22023-11-28The BookingPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file validation on the 'bookingpress_process_upload' function…
CVE-2025-24732Medium6.52025-01-24Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in reputeinfosystems BookingPress bookingpress-appointment-b…
CVE-2024-34799Medium6.52024-06-11Missing Authorization vulnerability in Repute Infosystems BookingPress.This issue affects BookingPress: from n/a through 1.0.82.
CVE-2024-10540Medium5.32024-11-02The Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPress plugin for WordPress is vulnerable to SQL Injection via the 'service' parameter of…
CVE-2023-36507Medium5.32023-11-30Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Repute Infosystems BookingPress – Appointment Booking Calendar Plugin and Online Sc…
CVE-2022-4340Medium5.32023-01-02The BookingPress WordPress plugin before 1.0.31 suffers from an Insecure Direct Object Reference (IDOR) vulnerability in it's thank you page, allowing any visi…
CVE-2024-31296Medium4.32024-04-07Authorization Bypass Through User-Controlled Key vulnerability in Repute Infosystems BookingPress.This issue affects BookingPress: from n/a through 1.0.81.