Bookingor

Source repositories

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2025-12573	WordPress Bookingor	Med	0.42	6.5	0.00		Jan 20, 2026	The Bookingor WordPress plugin through 1.0.12 exposes authenticated AJAX actions without capability or nonce checks, allowing low-privileged users to delete Bookingor WordPress plugin through 1.0.12 data.
CVE-2025-32231	WordPress Bookingor	Med	0.28	4.3	0.00		Apr 4, 2025	Missing Authorization vulnerability in Bookingor Bookingor bookingor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Bookingor: from n/a through <= 2.0.1.

CVE-2025-12573MedJan 20, 2026
WordPress
Bookingor
risk 0.42cvss 6.5epss 0.00
The Bookingor WordPress plugin through 1.0.12 exposes authenticated AJAX actions without capability or nonce checks, allowing low-privileged users to delete Bookingor WordPress plugin through 1.0.12 data.
CVE-2025-32231MedApr 4, 2025
WordPress
Bookingor
risk 0.28cvss 4.3epss 0.00
Missing Authorization vulnerability in Bookingor Bookingor bookingor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Bookingor: from n/a through <= 2.0.1.