Vulnerabilities > Codepeople > Appointment Booking Calendar > 1.3.92
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-04-22 | CVE-2025-46241 | Cross-Site Request Forgery (CSRF) vulnerability in Codepeople Appointment Booking Calendar Cross-Site Request Forgery (CSRF) vulnerability in codepeople Appointment Booking Calendar allows SQL Injection. | 8.8 |
| 2025-04-22 | CVE-2025-46247 | Missing Authorization vulnerability in Codepeople Appointment Booking Calendar Missing Authorization vulnerability in codepeople Appointment Booking Calendar allows Accessing Functionality Not Properly Constrained by ACLs. | 9.8 |