Skip to main content

Timetics CVE-2026-57674

| EUVDEUVD-2026-41285 HIGH
Cross-site Scripting (XSS) (CWE-79)
2026-07-02 Patchstack GHSA-pqph-qhf9-37xc
7.1
CVSS 3.1 · Vendor: Patchstack
Share

Severity by source

Vendor (Patchstack) PRIMARY
7.1 HIGH
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
vuln.today AI
7.1 HIGH

Unauthenticated network-reachable XSS (AV:N/PR:N/AC:L) requiring victim interaction (UI:R); script runs in a different context (S:C) with limited browser-session confidentiality/integrity/availability impact (C:L/I:L/A:L).

3.1 AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
4.0 AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

Primary rating from Vendor (Patchstack).

CVSS VectorVendor: Patchstack

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
Low

Lifecycle Timeline

1
Analysis Generated
Jul 02, 2026 - 12:28 vuln.today

DescriptionCVE.org

Unauthenticated Cross Site Scripting (XSS) in Timetics <= 1.0.58 versions.

AnalysisAI

Cross-Site Scripting in the Timetics WordPress appointment-booking plugin (by Arraytics) affects all versions up to and including 1.0.58, allowing unauthenticated remote attackers to inject script that executes in a victim's browser after the victim interacts with a crafted link or page. Because the CVSS scope is changed (S:C), a successful injection can affect resources beyond the vulnerable component, such as the browser session of a logged-in administrator. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Craft malicious link targeting Timetics input
Delivery
Deliver link to WordPress user via phishing
Exploit
Victim loads page, input reflected unsanitized
Execution
Injected JavaScript executes in victim browser
Impact
Steal session cookie or perform admin actions

Vulnerability AssessmentAI

Exploitation Exploitation requires no authentication (PR:N) but does require victim interaction (UI:R): the attacker must induce a user - ideally a logged-in WordPress administrator or staff member - to click a crafted link or load a page containing the injected payload targeting the Timetics plugin (versions ≤ 1.0.58). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The provided CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L, base 7.1 High) describes a network-reachable, low-complexity, unauthenticated flaw that requires user interaction, consistent with XSS rather than direct server compromise. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker crafts a URL or booking-form input containing a malicious JavaScript payload aimed at a Timetics endpoint and delivers it to a site administrator or visitor via email, chat, or a malicious page. When the victim opens the link, the unsanitized input is rendered in their browser and the script executes, stealing session cookies, performing actions as the logged-in user, or redirecting to a phishing page. …
Remediation Update the Timetics plugin to a version later than 1.0.58 once the vendor publishes a patched release; the input data does not specify an exact fixed version, so administrators should consult the Patchstack advisory (https://patchstack.com/database/wordpress/plugin/timetics/vulnerability/wordpress-timetics-plugin-1-0-58-cross-site-scripting-xss-vulnerability?_s_id=cve) and the Arraytics changelog to confirm the corrected version before deploying. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Audit all WordPress installations for Timetics plugin presence and document affected versions (≤1.0.58); disable the plugin immediately as a precautionary measure. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-57674 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy