exploitDog

CVE-2025-68975

Опубликовано: 30 дек. 2025

Источник: nvd

CVSS3: 8.1

EPSS Низкий

Описание

Authorization Bypass Through User-Controlled Key vulnerability in Eagle-Themes Eagle Booking eagle-booking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Eagle Booking: from n/a through <= 1.3.4.3.

Ссылки

https://vdp.patchstack.com/database/Wordpress/Plugin/eagle-booking/vulnerability/wordpress-eagle-booking-plugin-1-3-4-3-insecure-direct-object-references-idor-vulnerability?_s_id=cve

EPSS

Процентиль: 9%

0.00032

Низкий

8.1 High

CVSS3

Дефекты

CWE-639

Связанные уязвимости

GHSA-ffhx-92gc-w57q

CVSS3: 8.1

github

около 1 месяца назад

Authorization Bypass Through User-Controlled Key vulnerability in Eagle-Themes Eagle Booking eagle-booking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Eagle Booking: from n/a through <= 1.3.4.3.

EPSS

Процентиль: 9%

0.00032

Низкий

8.1 High

CVSS3

Дефекты

CWE-639