Stellarwp Bookit — Booking & Appointment Calendar

3 CVEs affecting Stellarwp Bookit — Booking & Appointment Calendar. Latest disclosed: 2025-11-12. Critical: 1, High: 1.

Top CVEs affecting Stellarwp Bookit — Booking & Appointment Calendar
CVESeverityScorePublishedSummary
CVE-2023-2834Critical9.82023-06-30The BookIt plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.3.7. This is due to insufficient verification on the…
CVE-2025-12633High7.52025-11-12The Booking Calendar | Appointment Booking | Bookit plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check o…
CVE-2022-4974Medium6.32024-10-16The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to…