Vulnerabilities > Easyappointments

DATE CVE VULNERABILITY TITLE RISK
2023-03-08 CVE-2023-1269 Use of Hard-coded Credentials vulnerability in Easyappointments
Use of Hard-coded Credentials in GitHub repository alextselegidis/easyappointments prior to 1.5.0.
network
low complexity
easyappointments CWE-798
critical
9.8
2022-05-10 CVE-2022-1397 Improper Privilege Management vulnerability in Easyappointments
API Privilege Escalation in GitHub repository alextselegidis/easyappointments prior to 1.5.0.
network
low complexity
easyappointments CWE-269
critical
9.0
2022-03-09 CVE-2022-0482 Privacy Violation vulnerability in Easyappointments
Exposure of Private Personal Information to an Unauthorized Actor in GitHub repository alextselegidis/easyappointments prior to 1.4.3.
network
low complexity
easyappointments CWE-359
6.4
2020-03-16 CVE-2018-13063 Missing Authorization vulnerability in Easyappointments Easy!Appointments
Easy!Appointments 1.3.0 has a Missing Authorization issue allowing retrieval of hashed passwords and salts.
network
low complexity
easyappointments CWE-862
5.0
2020-03-16 CVE-2018-13060 Improper Authentication vulnerability in Easyappointments Easy!Appointments
Easy!Appointments 1.3.0 has a Guessable CAPTCHA issue.
network
low complexity
easyappointments CWE-287
5.0
2019-09-11 CVE-2019-14936 Unspecified vulnerability in Easyappointments Easy!Appointments 1.3.2
Easy!Appointments 1.3.2 plugin for WordPress allows Sensitive Information Disclosure (Username and Password Hash).
network
low complexity
easyappointments
5.3