CVE-2025-39355

🗓️ 19 May 2025 19:46:07Reported by PatchstackType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 30 Views

SQL Injection vulnerability in WordPress FAT Services Booking plugin versions up to 5.6 affects security.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2025-39355	19 May 202520:39	–	circl
CNNVD	WordPress plugin FAT Services Booking SQL注入漏洞	19 May 202500:00	–	cnnvd
Cvelist	CVE-2025-39355 WordPress FAT Services Booking plugin <= 5.6 - SQL Injection vulnerability	19 May 202519:46	–	cvelist
EUVD	EUVD-2025-15780	3 Oct 202520:07	–	euvd
NVD	CVE-2025-39355	19 May 202520:15	–	nvd
Patchstack	WordPress FAT Services Booking plugin <= 5.6 - SQL Injection vulnerability	21 Apr 202513:20	–	patchstack
Positive Technologies	PT-2025-22096 · Unknown · Roninwp Fat Services Booking	19 May 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-39355	21 May 202520:23	–	redhatcve
Vulnrichment	CVE-2025-39355 WordPress FAT Services Booking plugin <= 5.6 - SQL Injection vulnerability	19 May 202519:46	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (April 21, 2025 to April 27, 2025)	1 May 202515:38	–	wordfence

Vulners

Node

roninwp fat_services_bookingRange≤5.6wordpress

[
  {
    "collectionURL": "https://codecanyon.net",
    "defaultStatus": "unaffected",
    "packageName": "fat-services-booking",
    "product": "FAT Services Booking",
    "vendor": "roninwp",
    "versions": [
      {
        "lessThanOrEqual": "5.6",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/Wordpress/Plugin/fat-services-booking/vulnerability/wordpress-fat-services-booking-plugin-5-6-sql-injection-vulnerability

28 Apr 2026 16:12Current

7.3High risk

Vulners AI Score7.3

CVSS 3.18.5

EPSS0.00179

SSVC

CWE-89