CVE-2025-9346 | Booking Calendar Plugin up to 10.14.1 on WordPress cross site scripting

Inserito da Angelo Barbosa | Ago 27, 2025 | CVE

A vulnerability was found in Booking Calendar Plugin up to 10.14.1 on WordPress. It has been classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2025-9346. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-9346 | Booking Calendar Plugin up to 10.14.1 on WordPress cross site scripting

Post correlati

CVE-2024-2119 | LuckyWP Table of Contents Plugin up to 2.1.4 on WordPress cross site scripting

CVE-2025-5792 | TOTOLINK EX1200T 4.1.2cu.5232_B20210713 HTTP POST Request /boafrm/formWlanRedirect redirect-url buffer overflow

CVE-2024-9985 | Ragic Enterprise Cloud Database unrestricted upload

CVE-2024-36471 | Apache Allura up to 1.16.0 DNS information disclosure