PT-2026-25278 · Codepeople · Wp Time Slots Booking Form

Nguyen Ba Khanh

Publicado

2026-03-13

Atualizado

2026-03-14

CVE-2026-32432

CVSS v3.1

5.3

Média

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions codepeople WP Time Slots Booking Form versions through 1.2.42

Description An authorization issue exists in codepeople WP Time Slots Booking Form, allowing exploitation of incorrectly configured access control security levels. The issue relates to missing authorization checks, potentially allowing unauthorized access to sensitive functionalities.

Recommendations Update codepeople WP Time Slots Booking Form to a version newer than 1.2.42.

Correção

Missing Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-862

Identificadores relacionados

CVE-2026-32432

Produtos afetados

Wp Time Slots Booking Form

PT-2026-25278 · Codepeople · Wp Time Slots Booking Form

CVE-2026-32432

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3