Log out
Get PRO

Latest

Input validation vulnerability in Salon booking system 9.6.2

  • Severity: high-risk
  • Status: Fixed
  • Publication: March 27, 2024

The booking system used for salons in WordPress can be easily hacked through a vulnerability called Stored Cross-Site Scripting. This is because the system does not properly check and filter the information that is entered, allowing attackers to insert harmful web scripts. This can be done by anyone with authorized access to the system and can put users at risk when they visit the affected pages.

Detected in:

Salon booking system fixed vulnerable versions: >= * <= 9.6.2
Salon Booking System, Appointment Scheduling for Salons, Spas & Small Businesses fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.