Authenticated (Contributor+) Stored CrossSite Scripting via wpbc Shortcode vulnerability
16 May, 2025
Unauthenticated PostConfirmation Booking Manipulation vulnerability
11 February, 2025
Authenticated (Contributor+) DOMBased Stored CrossSite Scripting via 'booking' Shortcode vulnerability
13 January, 2025
Admin+ Stored XSS vulnerability
7 November, 2024
Authenticated (Admin+) Stored CrossSite Scripting vulnerability
4 October, 2024