exploitDog

CVE-2025-12573

Опубликовано: 20 янв. 2026

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

The Bookingor WordPress plugin through 1.0.12 exposes authenticated AJAX actions without capability or nonce checks, allowing low-privileged users to delete Bookingor WordPress plugin through 1.0.12 data.

Ссылки

https://wpscan.com/vulnerability/b6198d76-813c-4f13-8b3d-b4609095ae34/

EPSS

Процентиль: 8%

0.00029

Низкий

6.5 Medium

CVSS3

Дефекты

Связанные уязвимости

GHSA-jf72-xqxp-785c

CVSS3: 6.5

github

19 дней назад

The Bookingor WordPress plugin through 1.0.12 exposes authenticated AJAX actions without capability or nonce checks, allowing low-privileged users to delete Bookingor WordPress plugin through 1.0.12 data.

EPSS

Процентиль: 8%

0.00029

Низкий

6.5 Medium

CVSS3

Дефекты