- Description
- The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.6.8.5. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.
- Source
- security@wordfence.com
- NVD status
- Received
CVSS 3.1
- Type
- Primary
- Base score
- 7.3
- Impact score
- 3.4
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
- Severity
- HIGH
- security@wordfence.com
- CWE-94
- Hype score
- Not currently trending
CVE-2025-1119 (CVSS:7.3, HIGH) is Awaiting Analysis. The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress is vulnerable to arb..https://t.co/Ztr1JcOZfK #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
18 Mar 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2025-1119 🔴 HIGH (7.3) 🏢 croixhaug - Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin 🏗️ * 🔗 https://t.co/SvUeFbFSAt 🔗 https://t.co/Q2eU5wJ9CX #CyberCron #VulnAlert #InfoSec https://t.co/CsZcxjrcf0
@cybercronai
14 Mar 2025
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
�� CVE-2025-1119 - WordPress - HIGH 🚨 🗓️ Date published 2025-03-13 07:15:36 UTC #WordPress #CyberSecurity #InfoSec #Vulnerability #TechNews https://t.co/AG3NPIDlcq
@vulns_space
13 Mar 2025
34 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-1119 The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to… https://t.co/FJARfBbZu0
@CVEnew
13 Mar 2025
374 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes