Easyappointments Security Vulnerabilities (CVEs)
Track 16 security vulnerabilities affecting Easyappointments products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This CSRF vulnerability in Easy!Appointments allows attackers to perform state-changing operations via crafted GET requests, bypassing CSRF protection...
Jan 15, 2026CVE-2025-50383 is a SQL injection vulnerability in Easy!Appointments v1.5.1 that allows attackers to execute arbitrary SQL commands via the order_by p...
Aug 25, 2025An unauthenticated booking logic flaw in Easy!Appointments v1.5.1 allows attackers to create appointments with excessively long durations, blocking al...
May 7, 2025A cross-site scripting (XSS) vulnerability in EasyAppointments v1.5.0 allows remote attackers to inject malicious scripts via the legal_settings param...
Feb 12, 2025A privilege escalation vulnerability in EasyAppointments v1.5.0 allows remote attackers to gain elevated privileges through the index.php file. This a...
Feb 12, 2025This CVE describes a Broken Object Level Authorization (BOLA) vulnerability in the Easy!Appointments system where a low-privileged user can create add...
Jul 9, 2024This CVE describes a Broken Object Level Authorization (BOLA) vulnerability in the Easy!Appointments scheduling software. It allows low-privileged use...
Jul 9, 2024This Broken Object Level Authorization (BOLA) vulnerability allows low-privileged users to create services for any user in the system, including admin...
Jul 9, 2024This CVE describes a Broken Object Level Authorization (BOLA) vulnerability in Easy!Appointments webhook endpoints that allows low-privileged authenti...
Jul 9, 2024This CVE describes a Broken Object Level Authorization (BOLA) vulnerability in Easy!Appointments that allows low-privileged users to access, modify, o...
Jul 9, 2024This CVE describes a Broken Object Level Authorization (BOLA) vulnerability in Easy!Appointments where low-privileged users can access, modify, or del...
Jul 9, 2024This CVE describes a Broken Object Level Authorization (BOLA) vulnerability in the Easy!Appointments scheduling software. It allows low-privileged use...
Jul 9, 2024This CVE describes a Broken Object Level Authorization (BOLA) vulnerability in Easy!Appointments that allows low-privileged users to access, modify, o...
Jul 9, 2024This session fixation vulnerability in easyappointments allows attackers to hijack user sessions by fixing session IDs before authentication. It affec...
Apr 15, 2023CVE-2023-1269 involves hard-coded credentials in the easyappointments scheduling software, allowing attackers to gain unauthorized access to the appli...
Mar 8, 2023This vulnerability in Easy Appointments allows unauthorized actors to access private personal information stored in the application. It affects all us...
Mar 9, 2022Why Monitor Easyappointments Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 16+ known vulnerabilities affecting Easyappointments products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Easyappointments packages in under 60 seconds. No agents required - completely agentless scanning that works across Easyappointments deployments.
Free vulnerability database: Access detailed information about every Easyappointments CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Easyappointments CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
