Reputeinfosystems Bookingpress — known CVE vulnerabilities
Every CVE whose affected-product data names Reputeinfosystems Bookingpress, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2022-0739 — CVSS 9.8 (critical): The BookingPress WordPress plugin before 1.0.11 fails to properly sanitize user supplied POST data before it is used in a dynamically…
CVE-2024-6467 — CVSS 8.8 (high): The BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin plugin for WordPress is vulnerable to Arbitrary File…
CVE-2024-6660 — CVSS 8.8 (high): The BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin plugin for WordPress is vulnerable to unauthorized…
CVE-2023-50841 — CVSS 8.5 (high): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Repute Infosystems BookingPress –…
CVE-2023-51405 — CVSS 8.2 (high): Improper Authentication vulnerability in Repute Infosystems BookingPress allows Accessing Functionality Not Properly Constrained by…
CVE-2025-31910 — CVSS 7.6 (high): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in reputeinfosystems BookingPress…
CVE-2023-6219 — CVSS 7.2 (high): The BookingPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file validation on the…
CVE-2024-3022 — CVSS 7.2 (high): The BookingPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient filename validation in the…
CVE-2025-24732 — CVSS 6.5 (medium): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in reputeinfosystems BookingPress…
CVE-2024-34799 — CVSS 6.5 (medium): Missing Authorization vulnerability in Repute Infosystems BookingPress.This issue affects BookingPress: from n/a through 1.0.82.
CVE-2022-4340 — CVSS 5.3 (medium): The BookingPress WordPress plugin before 1.0.31 suffers from an Insecure Direct Object Reference (IDOR) vulnerability in it's thank you…
CVE-2023-36507 — CVSS 5.3 (medium): Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Repute Infosystems BookingPress – Appointment Booking…
CVE-2024-10540 — CVSS 5.3 (medium): The Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPress plugin for WordPress is vulnerable to SQL Injection via the…
CVE-2024-31296 — CVSS 4.3 (medium): Authorization Bypass Through User-Controlled Key vulnerability in Repute Infosystems BookingPress.This issue affects BookingPress: from n/a…