CVE-2024-12077 | WpDevArt Booking Calendar Plugin up to 3.2.19 on WordPress calendar_id cross site scripting

Posted by Angelo Barbosa | Jan 7, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in WpDevArt Booking Calendar Plugin and Booking Calendar Pro Plugin up to 3.2.19 on WordPress. This issue affects some unknown processing. The manipulation of the argument calendar_id leads to cross site scripting.

The identification of this vulnerability is CVE-2024-12077. The attack may be initiated remotely. There is no exploit available.

CVE-2024-12077 | WpDevArt Booking Calendar Plugin up to 3.2.19 on WordPress calendar_id cross site scripting

Related Posts

CVE-2024-44014 | Vmaxstudio Vmax Project Manager Plugin up to 1.0 on WordPress path traversal

CVE-2024-10543 | Tumult Hype Animations Plugin up to 1.9.14 on WordPress authorization

CVE-2024-36455 | Broadcom Symantec Privileged Access Management up to 3.4.6/4.1.7 PAM System Remote Code Execution

CVE-2024-10861 | Popup Box Plugin up to 4.9.7 on WordPress Options Update authorization