CRITICAL9.8CVE-2024-57602Easy!Appointments Improper Restriction of Excessive Authentication Attempts from 0, <= 1.5.0
CRITICAL9.8CVE-2023-1269Easy!Appointments uses hard-coded credentials from 0, <= 1.4.3
CRITICAL9.1CVE-2022-0482Exposure of Private Personal Information to an Unauthorized Actor in alextselegidis/easyappointments from 0, < 1.4.3
HIGH8.8Privilege escalation in easyappointments
from 0, <= 1.4.3
HIGH7.3Code Injection in alextselegidis/easyappointments
from 0, < 1.5.0
MEDIUM6.8alextselegidis/easyappointments vulnerable to Stored Cross-site Scripting
from 0, <= 1.4.3
MEDIUM6.3Easy!Appointments Improper Access Control vulnerability
from 0, < 1.5.0
MEDIUM6.1Remote code execution in alextselegidis/easyappointments
from 0, <= 1.5.0
MEDIUM5.4alextselegidis/easyappointments Session Fixation vulnerability
from 0, <= 1.4.3
MEDIUM5.4alextselegidis/easyappointments vulnerable to Stored Cross-site Scripting
from 0, <= 1.4.3
MEDIUM5.4alextselegidis/easyappointments Improper Access Control vulnerability
from 0, <= 1.4.3
—alextselegidis/easyappointments is Vulnerable to CSRF Protection Bypass
from 0, <= 1.5.2
—Easy!Appointments SQL injection vulnerability
from 0, < 1.5.2-beta.1
—Easy!Appointments Denial of Service (DoS)
from 0, <= 1.5.1