| Max CVSS | 6.8 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-5673 | 6.8 |
An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. CSRF exists via wp-admin/admin.php.
|
05-03-2019 - 18:05 | 13-01-2018 - 00:29 | |
| CVE-2018-5671 | 3.5 |
An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php extra_field1[items][field_item1][price_percent] parameter.
|
05-03-2019 - 18:04 | 13-01-2018 - 00:29 | |
| CVE-2018-5672 | 3.5 |
An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php form_field5[label] parameter.
|
05-03-2019 - 18:04 | 13-01-2018 - 00:29 | |
| CVE-2018-5670 | 3.5 |
An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php sale_conditions[count][] parameter.
|
05-03-2019 - 18:04 | 13-01-2018 - 00:29 |