Known Vulnerabilities for products from Vcita
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Vcita".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-67559 json | Not Provided | 2025-12-09 | 2026-04-27 | |
| CVE-2025-67472 json | Cross-Site Request Forgery (CSRF) vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by vcita meeting-... | Not Provided | 2025-12-09 | 2026-04-27 |
| CVE-2025-54677 json | Unrestricted Upload of File with Dangerous Type vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by ... | Not Provided | 2025-08-20 | 2026-04-23 |
| CVE-2025-54676 json | Not Provided | 2025-08-14 | 2026-04-23 | |
| CVE-2025-32238 json | Generation of Error Message Containing Sensitive Information vulnerability in vcita Online Booking & Scheduling Calendar for ... | Not Provided | 2025-04-04 | 2026-04-23 |
| CVE-2025-32199 json | Not Provided | 2025-04-10 | 2026-04-23 | |
| CVE-2025-22661 json | Not Provided | 2025-01-21 | 2026-04-23 | |
| CVE-2024-54356 json | Not Provided | 2024-12-16 | 2026-04-23 | |
| CVE-2024-47638 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in vcita Online Booking & ... | Not Provided | 2024-10-05 | 2026-04-23 |
| CVE-2024-13703 json | The CRM and Lead Management by vcita plugin for WordPress is vulnerable to unauthorized modification of data due to a missing... | Not Provided | 2025-03-13 | 2026-04-08 |
| CVE-2024-5859 json | The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to Reflected Cross-Site Sc... | Not Provided | 2024-06-21 | 2026-04-08 |
| CVE-2024-5791 json | The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scrip... | Not Provided | 2024-06-22 | 2026-04-08 |
| CVE-2023-39992 json | Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in vCita.Com Online Booking & Scheduling Calendar for WordPress by... | 6.1 - MEDIUM | 2023-09-04 | 2023-09-06 |
| CVE-2023-2416 json | The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to Cross-Site Request Forg... | Not Provided | 2023-06-03 | 2026-04-08 |
| CVE-2023-2415 json | The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to unauthorized modificati... | Not Provided | 2023-06-03 | 2026-04-08 |
| CVE-2023-2414 json | The Online Booking & Scheduling Calendar for WordPress by vcita plugin for WordPress is vulnerable to unauthorized modificati... | Not Provided | 2023-06-09 | 2026-04-08 |
| CVE-2023-2407 json | The Event Registration Calendar By vcita plugin, versions up to and including 3.10.0, and Online Payments – Get Paid with P... | Not Provided | 2023-06-03 | 2026-04-08 |
| CVE-2023-2406 json | The Event Registration Calendar By vcita plugin, versions up to and including 3.9.1, and Online Payments – Get Paid with Pa... | Not Provided | 2023-06-03 | 2026-04-08 |
| CVE-2023-2405 json | The CRM and Lead Management by vcita plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and ... | Not Provided | 2023-06-03 | 2026-04-08 |
| CVE-2023-2404 json | The CRM and Lead Management by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'email' parame... | Not Provided | 2023-06-03 | 2026-04-08 |