Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in Service Booking & Scheduling Solution | All-in-one Booking Systems 1.2.0

  • Severity: critical
  • Status: Fixed
  • Publication: April 10, 2025

The WpBookingly plugin for WordPress has a security issue that allows attackers to inject a PHP Object and potentially access sensitive information, delete files, or run code. This vulnerability is present in versions up to 1.2.0 and can be exploited by unauthenticated attackers. No known protection is available for this issue.

Detected in:

Appointment Booking & Scheduling for WooCommerce – WpBookingly | All-in-One Service Manager fixed vulnerable versions:
Appointment Booking Plugin for WooCommerce – WpBookingly | All-in-One Service Manager fixed vulnerable versions:
Service Booking & Scheduling Solution | All-in-one Booking Systems fixed vulnerable versions: >= * <= 1.2.1

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.