High severity7.1NVD Advisory· Published Oct 22, 2025· Updated Apr 15, 2026
CVE-2025-49951
CVE-2025-49951
Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpcrunch gAppointments gAppointments allows Reflected XSS.This issue affects gAppointments: from n/a through <= 1.14.1.
Affected products
2<= 1.14.1+ 1 more
- (no CPE)range: <= 1.14.1
- (no CPE)range: <=1.14.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.