WPScan
How it works
Pricing
Vulnerabilities
WordPress
Plugins
Themes
Stats
Submit vulnerabilities
For developers
Status
API details
CLI scanner
Contact
Login
Get started
WPScan
How it works
Pricing
Vulnerabilities
WordPress
Plugins
Themes
Stats
Submit vulnerabilities
For developers
Status
API details
CLI scanner
Contact
Login
Get started
WordPress Plugin Vulnerabilities
Advanced Booking Calendar
2022-12-02
Advanced Booking Calendar <= 1.7.1 - Unauthenticated SQLi
No known fix
2022-12-01
Advanced Booking Calendar <= 1.7.1 - CSRF
No known fix
2022-03-21
Advanced Booking Calendar < 1.7.1 - Admin+ SQLi
Fixed in version 1.7.1
2022-03-21
Advanced Booking Calendar < 1.7.1 - Reflected Cross-Site Scripting
Fixed in version 1.7.1
2022-02-28
Advanced Booking Calendar < 1.7.0 - Unauthenticated SQL Injection
Fixed in version 1.7.0
2021-03-30
Advanced Booking Calendar < 1.6.8 - Authenticated Reflected Cross-Site Scripting (XSS)
Fixed in version 1.6.8
2021-03-28
Advanced Booking Calendar < 1.6.7 - Authenticated Reflected Cross-Site Scripting (XSS)
Fixed in version 1.6.7
2020-10-22
Advanced Booking Calendar < 1.6.2 - Unauthenticated SQL Injection
Fixed in version 1.6.2
Fixed in version 1.6.8Fixed in version 1.6.7Fixed in version 1.6.8Fixed in version 1.6.7