{“lastseen”:””,”description”:”Unrestricted Upload of File with Dangerous Type vulnerability in vcita Online Booking \\u0026 Scheduling Calendar for WordPress by vcita allows Using Malicious Files. This issue affects Online Booking \\u0026 Scheduling Calendar for WordPress by vcita: from n\/a through 4.5.3.”,”published”:”2025-08-20T08:02:52.476Z”,”modified”:”2025-08-20T08:02:52.476Z”,”type”:”cve”,”title”:”WordPress Online Booking \\u0026 Scheduling Calendar for WordPress by vcita Plugin \\u003c= 4.5.3 – Arbitrary File Upload Vulnerability”,”source”:”Patchstack”,”references”:”https:\/\/patchstack.com\/database\/wordpress\/plugin\/meeting-scheduler-by-vcita\/vulnerability\/wordpress-online-booking-scheduling-calendar-for-wordpress-by-vcita-plugin-4-5-3-arbitrary-file-upload-vulnerability?_s_id=cve”,”id”:”CVE-2025-54677″,”bulletinFamily”:””,”cwe”:[“CWE-434″],”cvelist”:null,”sourceData”:”vcita Online Booking \\u0026 Scheduling Calendar for WordPress by vcita n\/a”,”sourceHref”:””,”cvss”:{“score”:9.1,”severity”:”CRITICAL”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:H\/UI:N\/S:C\/C:H\/I:H\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”Online Booking \\u0026 Scheduling Calendar for WordPress by vcita”,”version”:”n\/a”,”vendor”:”vcita”,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”Unrestricted Upload of File with Dangerous Type vulnerability in vcita Online Booking \\u0026 Scheduling Calendar for WordPress by vcita allows Using Malicious Files. This issue…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[9,6,8,10,12,13,7,11,5],"class_list":["post-13544","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-critical","tag-cve","tag-cvss","tag-cvss-91","tag-exploit","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n