4 matches found
CVE-2025-23955
Missing Authorization vulnerability in xola Xola xola-bookings-for-tours-activities allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Xola: from n/a through = 1.6...
CVE-2025-23955 WordPress Xola plugin <= 1.6 - Broken Access Control vulnerability
Missing Authorization vulnerability in xola Xola xola-bookings-for-tours-activities allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Xola: from n/a through = 1.6...
CVE-2025-23955 WordPress Xola plugin <= 1.6 - Broken Access Control vulnerability
Missing Authorization vulnerability in xola Xola xola-bookings-for-tours-activities allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Xola: from n/a through = 1.6...
CVE-2025-23955
CVE-2025-23955 affects the Xola WordPress plugin (Xola: Booking for WordPress and Tours) up to version 1.6. It is described as a Missing Authorization vulnerability with broken access control, enabling unauthorized access to certain resources. The CVSS 3.1 vector from Patchstack indicates: AV:N, ...