Update the WordPress Appointment Hour Booking plugin to the latest available version (at least 1.3.72).
Lana Codes discovered and reported this Broken Access Control vulnerability in WordPress Appointment Hour Booking Plugin. This vulnerability has been fixed in version 1.3.72.
CSV Injection vulnerability
29.11.2022
Unauth. iFrame Injection vulnerability via Appointment Form
29.11.2022
CAPTCHA Bypass vulnerability
29.11.2022
Authenticated Stored CrossSite Scripting (XSS) vulnerability
23.05.2022
Authenticated Stored CrossSite Scripting (XSS) vulnerability
10.09.2021