CVE-2021-24712

CVE-2021-24712: Appointment Hour Booking – WordPress Booking Plugin < 1.3.17 - Authenticated Stored XSS

Vendor Unknown
Product Appointment Hour Booking – WordPress Booking Plugin
Weakness CWE-79 · XSS
Published October 11, 2021
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

The Appointment Hour Booking WordPress plugin before 1.3.17 does not properly sanitize values used when creating new calendars.

Key dates

02Disclosure timeline

October 11, 2021 CVE published
August 3, 2024 Record updated