CVE-2025-12042 | Course Booking System Plugin up to 6.1.5 on WordPress Booking Data Export csv-export.php authorization

Inserito da Angelo Barbosa | Nov 7, 2025 | CVE

A vulnerability has been found in Course Booking System Plugin up to 6.1.5 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality of the file csv-export.php of the component Booking Data Export. Performing manipulation results in missing authorization.

This vulnerability is identified as CVE-2025-12042. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-12042 | Course Booking System Plugin up to 6.1.5 on WordPress Booking Data Export csv-export.php authorization

Post correlati

CVE-2025-10861 | Popup Builder with Gamification, Multi-Step Popups, Page-Level Targeting, and WooCommerce Triggers Plugin server-side request forgery

CVE-2025-4057 | Red Hat AMQ Broker 7 ActiveMQ Artemis weak credentials

CVE-2024-53130 | Linux Kernel up to 6.1.118/6.6.62/6.11.9 mark_buffer_dirty null pointer dereference

CVE-2024-8875 | vedees wcms up to 0.3.2 /wex/finder.php path traversal