Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-30237

Malicious code in bioql PyPI...

9.8CVSS6.4AI score0.00396EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/09/21 6:8 a.m.5 views

CVE-2025-5948

The Service Finder Bookings plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 6.0. This is due to the plugin not properly validating a user's identity prior to claiming a business when using the claimbusiness AJAX action. This...

9.8CVSS6.4AI score0.00396EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/19 5:28 a.m.9 views

CVE-2025-5948 Service Finder Bookings <= 6.0 - Unauthenticated Privilege Escalation via claim_business

The Service Finder Bookings plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 6.0. This is due to the plugin not properly validating a user's identity prior to claiming a business when using the claimbusiness AJAX action. This...

9.8CVSS0.00396EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/09/19 5:28 a.m.5 views

CVE-2025-5948 Service Finder Bookings <= 6.0 - Unauthenticated Privilege Escalation via claim_business

The Service Finder Bookings plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 6.0. This is due to the plugin not properly validating a user's identity prior to claiming a business when using the claimbusiness AJAX action. This...

9.8CVSS6AI score0.00396EPSS
Exploits0References2
CVE
CVE
added 2025/09/19 5:28 a.m.28 views

CVE-2025-5948

CVE-2025-5948 : The WordPress plugin Service Finder Bookings (

9.8CVSS6.1AI score0.00396EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/19 12:0 a.m.8 views

PT-2025-38515

Name of the Vulnerable Software and Affected Versions Service Finder Bookings plugin for WordPress versions prior to 6.1 Description The Service Finder Bookings plugin for WordPress does not properly validate a user's identity prior to claiming a business when using the claim business API endpoin...

9.8CVSS6.8AI score0.00396EPSS
Exploits0References9
Rows per page
Query Builder