Medium severity6.1NVD Advisory· Published Aug 9, 2019· Updated Jun 17, 2026
CVE-2019-14791
CVE-2019-14791
Description
The Appointment Booking Calendar plugin 1.3.18 for WordPress allows XSS via the wp-admin/admin-post.php editionarea parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <1.3.18
Patches
Vulnerability mechanics
References
3- www.pluginvulnerabilities.com/2019/07/03/hackers-look-to-be-targeting-the-wordpress-plugin-appointment-booking-calendar-which-is-yet-another-insecure-plugin-from-code-people/nvdExploitThird Party Advisory
- wordpress.org/plugins/appointment-booking-calendar/nvdThird Party Advisory
- wpvulndb.com/vulnerabilities/9426nvdThird Party Advisory
News mentions
0No linked articles in our index yet.