Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
iqonic design wpbookit vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2024-10215
The WPBookit plugin for WordPress is vulnerable to Arbitrary User Password Change in versions up to, and including, 1.6.4. This is due to the plugin providing user-controlled access to objects, letting a user bypass authorization and access system resources. This makes it possibl...
Iqonic Design Wpbookit
7.1
CVSSv3
CVE-2025-26910
Cross-Site Request Forgery (CSRF) vulnerability in Iqonic Design WPBookit allows Stored XSS. This issue affects WPBookit: from n/a up to and including 1.0.1.
Iqonic Design Wpbookit
9.8
CVSSv3
CVE-2025-0357
The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'WPB_Profile_controller::handle_image_upload' function in versions up to, and including, 1.6.9. This makes it possible for unauthenticated malicious...
Iqonic Design Wpbookit
5.3
CVSSv3
CVE-2025-32254
Missing Authorization vulnerability in Iqonic Design WPBookit allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects WPBookit: from n/a up to and including 1.0.1.
Iqonic Design Wpbookit
9.3
CVSSv3
CVE-2024-54280
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Iqonic Design WPBookit allows SQL Injection.This issue affects WPBookit: from n/a up to and including 1.6.0.
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
local file inclusion
hard-coded
CVE-2025-37899
CVE-2025-46487
CVE-2025-46474
dnn.platform
CVE-2025-47646
school management
wordpress social login and register
reflected XSS
CVE-2025-48735
CVE-2025-4664
zentaopms
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
Vulmon