Primary

Context

Booked Scheduler Directory Traversal Vulnerability in manage_email_templates.php

Vulnerability

A directory traversal vulnerability has been identified in Booked Scheduler version 2.7.7, specifically within the manage_email_templates.php script. This vulnerability allows authenticated administrators to access unauthorized files by exploiting the 'tn' parameter and manipulating directory path traversal techniques.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive files on the server.

Reproduction

To reproduce this vulnerability, an authenticated administrator can send a GET request to the manage_email_templates.php script, including the vulnerable 'tn' parameter. The request should be made with the appropriate session cookie to maintain authentication.

Added: Feb 3, 2026, 10:47 PM

Updated: Feb 3, 2026, 10:47 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

6.1

remediation

0.0

relevance

2.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

6.1

remediation

0.0

relevance

2.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Booked Scheduler Directory Traversal Vulnerability in manage_email_templates.php

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating