A vulnerability was found in Service Finder Bookings Plugin up to 6.0 on WordPress. It has been rated as critical. This issue affects the function
service_finder_switch_back
of the component User Switch Cookie Handler. The manipulation leads to improper authentication.
The identification of this vulnerability is CVE-2025-5947. The attack may be initiated remotely. There is no exploit available.