PT-2026-23263 · WordPress · Wedesigntech Ultimate Booking Addon

Phat Rio

·

Publicado

2026-03-05

·

Atualizado

2026-03-05

·

CVE-2026-27390

CVSS v3.1

8.8

Alta

VetorAV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions WeDesignTech Ultimate Booking Addon versions through 1.0.1
Description An authentication bypass issue exists in designthemes WeDesignTech Ultimate Booking Addon. This allows for authentication abuse by utilizing an alternate path or channel. The wedesigntech-ultimate-booking-addon is affected.
Recommendations Update WeDesignTech Ultimate Booking Addon to a version later than 1.0.1.

Correção

Authentication Bypass Using an Alternate Path or Channel

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-288

Identificadores relacionados

CVE-2026-27390

Produtos afetados

Wedesigntech Ultimate Booking Addon