Vulnerability CVE-2022-2373
Published: 2022-08-29

Description:
The Simply Schedule Appointments WordPress plugin before 1.5.7.7 is missing authorisation in a REST endpoint, allowing unauthenticated users to retrieve WordPress users details such as name and email address

 References:
https://wpscan.com/vulnerability/6aa9aa0d-b447-4584-a07e-b8a0d1b83a31
Copyright 2026, cxsecurity.com

 

Back to Top