Vulnerabilities > Codepeople > Booking Calendar Contact Form
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-21 | CVE-2016-10909 | SQL Injection vulnerability in Codepeople Booking Calendar Contact Form The booking-calendar-contact-form plugin before 1.0.24 for WordPress has SQL injection. | 7.5 |
| 2019-08-21 | CVE-2016-10908 | Cross-site Scripting vulnerability in Codepeople Booking Calendar Contact Form The booking-calendar-contact-form plugin before 1.0.24 for WordPress has XSS. | 4.3 |