High severity8.2NVD Advisory· Published Apr 22, 2025· Updated Apr 23, 2026
CVE-2025-46241
CVE-2025-46241
Description
Cross-Site Request Forgery (CSRF) vulnerability in codepeople Appointment Booking Calendar appointment-booking-calendar allows SQL Injection.This issue affects Appointment Booking Calendar: from n/a through <= 1.3.92.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:codepeople:appointment_booking_calendar:*:*:*:*:*:wordpress:*:*+ 1 more
- cpe:2.3:a:codepeople:appointment_booking_calendar:*:*:*:*:*:wordpress:*:*range: <1.3.93
- (no CPE)range: <=1.3.92
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.