CVE-2025-39398
CVE-2025-39398 is a Missing Authorization vulnerability in the WordPress plugin/theme bundle “Hotel + Bed and Breakfast Booking Calendar Theme | Bellevue” (Bellevuex) affecting versions up to 4.2.2. The vulnerability is categorized as Broken Access Control with a CVSS v3.1 base score of 4.3 (Medi...