Security Advisories - alextselegidis/easyappointments

alextselegidis/easyappointments Security Advisories for 1.3.1 (13)

[MEDIUM] Easy!Appointments SQL injection vulnerability

PKSA-ftwr-h2by-25z6 CVE-2025-50383 GHSA-2f28-69j7-85hf

Affected version: <1.5.2-beta.1

Reported by:
GitHub
[MEDIUM] Easy!Appointments Denial of Service (DoS)

PKSA-w556-svhf-8jpc CVE-2025-29448 GHSA-hcjv-982c-5f29

Affected version: <=1.5.1

Reported by:
GitHub
[MEDIUM] Remote code execution in alextselegidis/easyappointments

PKSA-w16x-vhyz-f1p6 CVE-2024-57601 GHSA-3wf7-83q3-948c

Affected version: <=1.5.0

Reported by:
GitHub
[CRITICAL] Easy!Appointments Improper Restriction of Excessive Authentication Attempts

PKSA-vj3c-qdk9-qkyt CVE-2024-57602 GHSA-8fc2-fhh6-f6m5

Affected version: <=1.5.0

Reported by:
GitHub
[MEDIUM] Easy!Appointments Improper Access Control vulnerability

PKSA-twkv-h3r3-vv25 CVE-2023-3700 GHSA-8c6q-26w6-qwhg

Affected version: <=1.4.3

Reported by:
GitHub
[MEDIUM] alextselegidis/easyappointments vulnerable to Stored Cross-site Scripting

PKSA-7mfz-wxbh-wyvy CVE-2023-2102 GHSA-j6qq-9939-9jv8

Affected version: <=1.4.3

Reported by:
GitHub
[MEDIUM] alextselegidis/easyappointments vulnerable to Stored Cross-site Scripting

PKSA-4ky5-ksg8-41jb CVE-2023-2103 GHSA-7m8r-gmc3-3p4v

Affected version: <=1.4.3

Reported by:
GitHub
[MEDIUM] alextselegidis/easyappointments Improper Access Control vulnerability

PKSA-2mm6-m84c-116j CVE-2023-2104 GHSA-fc4g-f42p-7rhp

Affected version: <=1.4.3

Reported by:
GitHub
[MEDIUM] alextselegidis/easyappointments Session Fixation vulnerability

PKSA-pr9p-tp6q-k96z CVE-2023-2105 GHSA-4qmm-cv4r-qfr4

Affected version: <=1.4.3

Reported by:
GitHub
[HIGH] Code Injection in alextselegidis/easyappointments

PKSA-xcq3-bw37-r5rt CVE-2023-1367 GHSA-9qvw-fhj2-xqmv

Affected version: <1.5.0

Reported by:
GitHub
[CRITICAL] Easy!Appointments uses hard-coded credentials

PKSA-h83m-6xpp-14tj CVE-2023-1269 GHSA-347f-rxg8-qgrv

Affected version: <=1.4.3

Reported by:
GitHub
[HIGH] Privilege escalation in easyappointments

PKSA-2mgs-m1qn-58px CVE-2022-1397 GHSA-7f62-4887-cfv5

Affected version: <=1.4.3

Reported by:
GitHub
[CRITICAL] Exposure of Private Personal Information to an Unauthorized Actor in alextselegidis/easyappointments

PKSA-z6c9-mttf-fr49 CVE-2022-0482 GHSA-r6cm-wg48-rh2r

Affected version: <1.4.3

Reported by:
GitHub

alextselegidis/easyappointments Security Advisories for 1.3.1 (13)

[MEDIUM] Easy!Appointments SQL injection vulnerability

[MEDIUM] Easy!Appointments Denial of Service (DoS)

[MEDIUM] Remote code execution in alextselegidis/easyappointments

[CRITICAL] Easy!Appointments Improper Restriction of Excessive Authentication Attempts

[MEDIUM] Easy!Appointments Improper Access Control vulnerability

[MEDIUM] alextselegidis/easyappointments vulnerable to Stored Cross-site Scripting

[MEDIUM] alextselegidis/easyappointments vulnerable to Stored Cross-site Scripting

[MEDIUM] alextselegidis/easyappointments Improper Access Control vulnerability

[MEDIUM] alextselegidis/easyappointments Session Fixation vulnerability

[HIGH] Code Injection in alextselegidis/easyappointments

[CRITICAL] Easy!Appointments uses hard-coded credentials

[HIGH] Privilege escalation in easyappointments

[CRITICAL] Exposure of Private Personal Information to an Unauthorized Actor in alextselegidis/easyappointments