Filter

Easy!AppointmentsA BOLA vulnerability in POST /admins in EasyAppointments < 1.5.0

critical
9.9
First published (updated )
CVE-2023-3287

Easy!AppointmentsA BOLA vulnerability in GET, PUT, DELETE /secretaries/{secretaryId} in EasyAppointments < 1.5.0

critical
9.9
First published (updated )
CVE-2023-38051

Easy!AppointmentsA BOLA vulnerability in GET, PUT, DELETE /customers/{customerId} in EasyAppointments < 1.5.0

critical
9.9
First published (updated )
CVE-2023-38054

Easy!AppointmentsA BOLA vulnerability in GET, PUT, DELETE /providers/{providerId} in EasyAppointments < 1.5.0

critical
9.9
First published (updated )
CVE-2023-38048

Easy!AppointmentsA BOLA vulnerability in GET, PUT, DELETE /admins/{adminId} in EasyAppointments < 1.5.0

critical
9.9
First published (updated )
CVE-2023-38052

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Easy!AppointmentsA BOLA vulnerability in GET, PUT, DELETE /settings/{settingName} in EasyAppointments < 1.5.0

critical
9.9
First published (updated )
CVE-2023-38053

Easy!AppointmentsA BOLA vulnerability in GET, PUT, DELETE /appointments/{appointmentId} in EasyAppointments < 1.5.0

critical
9.9
First published (updated )
CVE-2023-38049

Easy!AppointmentsUse of Hard-coded Credentials in alextselegidis/easyappointments

critical
9.8
First published (updated )
CVE-2023-1269

Easy!AppointmentsA BOLA vulnerability in GET, PUT, DELETE /services/{serviceId} in EasyAppointments < 1.5.0

critical
9.6
First published (updated )
CVE-2023-38055

Easy!AppointmentsA BOLA vulnerability in GET, PUT, DELETE /webhooks/{webhookId} in EasyAppointments < 1.5.0

critical
9.1
First published (updated )
CVE-2023-38050

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Easy!AppointmentsExposure of Private Personal Information to an Unauthorized Actor in alextselegidis/easyappointments

critical
9.1
First published (updated )
CVE-2022-0482

Easy!AppointmentsAPI Privilege Escalation in alextselegidis/easyappointments

critical
9
First published (updated )
CVE-2022-1397

Easy!AppointmentsA BOLA vulnerability in POST /providers in EasyAppointments < 1.5.0

high
8.8
First published (updated )
CVE-2023-3288

Easy!AppointmentsSession Fixation in alextselegidis/easyappointments

high
8.8
First published (updated )
CVE-2023-2105

Easy!AppointmentsA BOLA vulnerability in GET, PUT, DELETE /categories/{categoryId} in EasyAppointments < 1.5.0.

high
8.5
First published (updated )
CVE-2023-38047

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Easy!AppointmentsA BOLA vulnerability in POST /appointments in EasyAppointments < 1.5.0

high
7.7
First published (updated )
CVE-2023-3285

Easy!AppointmentsA BOLA vulnerability in POST /secretaries in EasyAppointments < 1.5.0

high
7.7
First published (updated )
CVE-2023-3286

Easy!AppointmentsA BOLA vulnerability in POST /services in EasyAppointments < 1.5.0

high
7.7
First published (updated )
CVE-2023-3289

Easy!AppointmentsEasy!Appointments 1.3.0 has a Missing Authorization issue allowing retrieval of hashed passwords and…

high
7.5
First published (updated )
CVE-2018-13063

Easy!AppointmentsCross-site Scripting (XSS) - Stored in alextselegidis/easyappointments

medium
6.8
First published (updated )
CVE-2023-2102

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Easy!AppointmentsEasy!Appointments 1.3.0 has a Guessable CAPTCHA issue.

medium
6.5
First published (updated )
CVE-2018-13060

composer/alextselegidis/easyappointmentsAuthorization Bypass Through User-Controlled Key in alextselegidis/easyappointments

medium
6.3
First published (updated )
CVE-2023-3700

Easy!AppointmentsCode Injection in alextselegidis/easyappointments

medium
6
First published (updated )
CVE-2023-1367

Easy!AppointmentsCross-site Scripting (XSS) - Stored in alextselegidis/easyappointments

medium
5.4
First published (updated )
CVE-2023-2103

Easy!AppointmentsImproper Access Control in alextselegidis/easyappointments

medium
5.4
First published (updated )
CVE-2023-2104

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Easy!AppointmentsEasy!Appointments 1.3.2 plugin for WordPress allows Sensitive Information Disclosure (Username and P…

medium
5.3
First published (updated )
CVE-2019-14936

Easy!AppointmentsA BOLA vulnerability in POST /customers in EasyAppointments < 1.5.0

medium
5
First published (updated )
CVE-2023-3290

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203