VYPR

Booking X

by WordPress

Source repositories

CVEs (1)

  • CVE-2025-6814HigJul 4, 2025
    risk 0.49cvss 7.5epss 0.00

    The Booking X plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the export_now() function in versions 1.0 to 1.1.2. This makes it possible for unauthenticated attackers to download all plugin data, including user accounts,…