CVE-2025-54040 WordPress Webba Booking <= 5.1.20 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Webba Appointment Booking Webba Booking webba-booking-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Webba Booking: from n/a through = 5.1.20...

CVE-2025-54040 WordPress Webba Booking <= 5.1.20 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Webba Appointment Booking Webba Booking webba-booking-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Webba Booking: from n/a through = 5.1.20...

CVE-2025-54729 WordPress Webba Booking Plugin <= 6.0.5 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Webba Appointment Booking Webba Booking webba-booking-lite allows Stored XSS.This issue affects Webba Booking: from n/a through = 6.0.5...

CVE-2025-54729 WordPress Webba Booking Plugin <= 6.0.5 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Webba Appointment Booking Webba Booking webba-booking-lite allows Stored XSS.This issue affects Webba Booking: from n/a through = 6.0.5...

WordPress Webba Booking Plugin <= 5.0.48 is vulnerable to Broken Access Control

Software Webba Booking Type Plugin Vulnerable versions = 5.0.48 Fixed in 5.0.50 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-8432 Patch priority Low CVSS severity Low 4.3 Developer Webba Plugins PSID fd2912e23a57 Credits Lucio Sá Required privilege...

WordPress Webba Booking Plugin <= 4.5.33 is vulnerable to Cross Site Request Forgery (CSRF)

Software Webba Booking Type Plugin Vulnerable versions = 4.5.33 Fixed in 5.0 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-51354 Patch priority Low CVSS severity Low 4.3 Developer Webba Plugins PSID a11b85f9cf3e Credits Skalucy Required privile...

WordPress Webba Booking Plugin < 4.5.31 is vulnerable to Cross Site Scripting (XSS)

Software Webba Booking Type Plugin Vulnerable versions 4.5.31 Fixed in 4.5.31 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Webba Plugins PSID 1c913074f660 Credits Rafie Muhammad Patchstack Required...