BookingPress

Cross Site Scripting (XSS) vulnerability <= 1.1.25

Unauthenticated Export File Download vulnerability < 1.1.23

Authenticated (Contributor+) SQL Injection vulnerability <= 1.1.21

Authenticated (Subscriber+) SQL Injection vulnerability <= 1.1.16

1.1.7 Authentication Bypass to Account Takeover vulnerability 1.1.6 - 1.1.7