exploitDog

GHSA-c565-3j89-9cp4

Опубликовано: 12 дек. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

The Bookit WordPress plugin before 2.5.1 has a publicly accessible REST endpoint that allows unauthenticated update of the plugins Stripe payment options.

The Bookit WordPress plugin before 2.5.1 has a publicly accessible REST endpoint that allows unauthenticated update of the plugins Stripe payment options.

Ссылки

EPSS

Процентиль: 12%

0.0004

Низкий

5.3 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2025-12841

CVSS3: 5.3

nvd

около 2 месяцев назад

The Bookit WordPress plugin before 2.5.1 has a publicly accessible REST endpoint that allows unauthenticated update of the plugins Stripe payment options.

EPSS

Процентиль: 12%

0.0004

Низкий

5.3 Medium

CVSS3

CVE ID