Vcita

Online Booking & Scheduling Calendar

9 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2025-67472

  • EPSS 0.02%
  • Veröffentlicht 09.12.2025 14:13:56
  • Zuletzt bearbeitet 20.01.2026 15:19:15

Cross-Site Request Forgery (CSRF) vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by vcita meeting-scheduler-by-vcita allows Cross Site Request Forgery.This issue affects Online Booking & Scheduling Calendar for WordPress by...

7.2

CVE-2025-54677

  • EPSS 0.06%
  • Veröffentlicht 20.08.2025 08:02:52
  • Zuletzt bearbeitet 12.12.2025 13:54:56

Unrestricted Upload of File with Dangerous Type vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by vcita allows Using Malicious Files. This issue affects Online Booking & Scheduling Calendar for WordPress by vcita: from n/a ...

5.4

CVE-2025-54676

  • EPSS 0.02%
  • Veröffentlicht 14.08.2025 10:34:42
  • Zuletzt bearbeitet 12.12.2025 13:53:26

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by vcita allows Stored XSS. This issue affects Online Booking & Scheduling Calendar for Wor...

4.3

CVE-2025-32238

  • EPSS 0.2%
  • Veröffentlicht 04.04.2025 16:15:33
  • Zuletzt bearbeitet 20.02.2026 20:40:28

Generation of Error Message Containing Sensitive Information vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by vcita allows Retrieve Embedded Sensitive Data. This issue affects Online Booking & Scheduling Calendar for WordP...

5.4

CVE-2024-54356

  • EPSS 0.08%
  • Veröffentlicht 16.12.2024 15:15:08
  • Zuletzt bearbeitet 20.02.2026 20:40:47

Cross-Site Request Forgery (CSRF) vulnerability in vCita.com Online Booking & Scheduling Calendar for WordPress by vcita allows Cross Site Request Forgery.This issue affects Online Booking & Scheduling Calendar for WordPress by vcita: from n/a throug...

5.4

CVE-2024-9872

  • EPSS 0.15%
  • Veröffentlicht 06.12.2024 09:15:09
  • Zuletzt bearbeitet 20.02.2026 20:40:34

The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the vcita_save_user_data_callback() function in all versions up to, and inclu...

6.1

CVE-2024-47638

  • EPSS 0.28%
  • Veröffentlicht 05.10.2024 13:15:15
  • Zuletzt bearbeitet 20.02.2026 20:41:00

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in vCita Online Booking & Scheduling Calendar for WordPress by vcita allows Reflected XSS.This issue affects Online Booking & Scheduling Calenda...

6.5

CVE-2024-37499

  • EPSS 0.69%
  • Veröffentlicht 09.07.2024 12:15:14
  • Zuletzt bearbeitet 09.06.2025 20:32:40

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in vCita Online Booking & Scheduling Calendar for WordPress by vcita allows Path Traversal.This issue affects Online Booking & Scheduling Calendar for WordPr...

5.4

CVE-2024-35761

  • EPSS 0.29%
  • Veröffentlicht 21.06.2024 13:15:10
  • Zuletzt bearbeitet 20.02.2026 20:41:09

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in vCita Online Booking & Scheduling Calendar for WordPress by vcita allows Stored XSS.This issue affects Online Booking & Scheduling Calendar f...