PT-2026-23263 · WordPress · Wedesigntech Ultimate Booking Addon
Phat Rio
·
Published
2026-03-05
·
Updated
2026-03-05
·
CVE-2026-27390
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
WeDesignTech Ultimate Booking Addon versions through 1.0.1
Description
An authentication bypass issue exists in designthemes WeDesignTech Ultimate Booking Addon. This allows for authentication abuse by utilizing an alternate path or channel. The
wedesigntech-ultimate-booking-addon is affected.Recommendations
Update WeDesignTech Ultimate Booking Addon to a version later than 1.0.1.
Fix
Authentication Bypass Using an Alternate Path or Channel
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Wedesigntech Ultimate Booking Addon