alextselegidis/easyappointments Security Advisories for 1.4.0-beta.1 (9)
-
[MEDIUM] Easy!Appointments Improper Access Control vulnerability
PKSA-twkv-h3r3-vv25 CVE-2023-3700 GHSA-8c6q-26w6-qwhg
Affected version: <=1.4.3
Reported by:
GitHub -
[MEDIUM] alextselegidis/easyappointments vulnerable to Stored Cross-site Scripting
PKSA-7mfz-wxbh-wyvy CVE-2023-2102 GHSA-j6qq-9939-9jv8
Affected version: <=1.4.3
Reported by:
GitHub -
[MEDIUM] alextselegidis/easyappointments vulnerable to Stored Cross-site Scripting
PKSA-4ky5-ksg8-41jb CVE-2023-2103 GHSA-7m8r-gmc3-3p4v
Affected version: <=1.4.3
Reported by:
GitHub -
[MEDIUM] alextselegidis/easyappointments Improper Access Control vulnerability
PKSA-2mm6-m84c-116j CVE-2023-2104 GHSA-fc4g-f42p-7rhp
Affected version: <=1.4.3
Reported by:
GitHub -
[MEDIUM] alextselegidis/easyappointments Session Fixation vulnerability
PKSA-pr9p-tp6q-k96z CVE-2023-2105 GHSA-4qmm-cv4r-qfr4
Affected version: <=1.4.3
Reported by:
GitHub -
[HIGH] Code Injection in alextselegidis/easyappointments
PKSA-xcq3-bw37-r5rt CVE-2023-1367 GHSA-9qvw-fhj2-xqmv
Affected version: <1.5.0
Reported by:
GitHub -
[CRITICAL] Easy!Appointments uses hard-coded credentials
PKSA-h83m-6xpp-14tj CVE-2023-1269 GHSA-347f-rxg8-qgrv
Affected version: <=1.4.3
Reported by:
GitHub -
[HIGH] Privilege escalation in easyappointments
PKSA-2mgs-m1qn-58px CVE-2022-1397 GHSA-7f62-4887-cfv5
Affected version: <=1.4.3
Reported by:
GitHub -
[CRITICAL] Exposure of Private Personal Information to an Unauthorized Actor in alextselegidis/easyappointments
PKSA-z6c9-mttf-fr49 CVE-2022-0482 GHSA-r6cm-wg48-rh2r
Affected version: <1.4.3
Reported by:
GitHub