Vcita Online Booking & Scheduling Calendar For Wordpress By Vcita

17 CVEs affecting Vcita Online Booking & Scheduling Calendar For Wordpress By Vcita. Latest disclosed: 2025-12-09. Critical: 1, High: 3.

Top CVEs affecting Vcita Online Booking & Scheduling Calendar For Wordpress By Vcita
CVESeverityScorePublishedSummary
CVE-2025-54677Critical9.12025-08-20Unrestricted Upload of File with Dangerous Type vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by vcita meeting-scheduler-by-vcita a…
CVE-2024-5791High7.22024-06-22The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'wp_id' parameter in…
CVE-2023-2298High7.22023-06-03The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'business_id' paramet…
CVE-2024-47638High7.12024-10-05Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in vcita Online Booking & Scheduling Calendar for WordPress…
CVE-2025-54676Medium6.52025-08-14Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in vcita Online Booking & Scheduling Calendar for WordPress…
CVE-2024-37499Medium6.52024-07-09Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in vCita Online Booking & Scheduling Calendar for WordPress by vci…
CVE-2024-35761Medium6.52024-06-21Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in vCita Online Booking & Scheduling Calendar for Wor…
CVE-2024-5859Medium6.12024-06-21The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘d’ parameter in a…
CVE-2025-67559Medium5.42025-12-09Missing Authorization vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by vcita meeting-scheduler-by-vcita allows Exploiting Incorrect…
CVE-2024-54356Medium5.42024-12-16Cross-Site Request Forgery (CSRF) vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by vcita meeting-scheduler-by-vcita allows Cross Si…
CVE-2024-9872Medium5.42024-12-06The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capabi…
CVE-2023-2414Medium5.42023-06-09The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capabi…
CVE-2023-2416Medium5.42023-06-03The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to Cross-Site Request Forgery due to a missing nonce check o…
CVE-2023-2415Medium5.42023-06-03The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capabi…
CVE-2023-2299Medium5.32023-06-03The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to unauthorized medication of data via the /wp-json/vcita-wo…
CVE-2025-67472Medium4.32025-12-09Cross-Site Request Forgery (CSRF) vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by vcita meeting-scheduler-by-vcita allows Cross Si…
CVE-2025-32238Medium4.32025-04-04Generation of Error Message Containing Sensitive Information vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by vcita meeting-schedul…