CVE-2026-40780 | Liquid Web/StellarWP BookIt Plugin prior 2.5.4.1 on WordPress authentication bypass

Inserito da Angelo Barbosa | Giu 2, 2026 | CVE

A vulnerability identified as critical has been detected in Liquid Web/StellarWP BookIt Plugin on WordPress. This affects an unknown part. The manipulation leads to authentication bypass using alternate channel.

This vulnerability is referenced as CVE-2026-40780. Remote exploitation of the attack is possible. No exploit is available.

You should upgrade the affected component.

CVE-2026-40780 | Liquid Web/StellarWP BookIt Plugin prior 2.5.4.1 on WordPress authentication bypass

Post correlati

CVE-2025-14349 | Universal Software FlexCity/Kiosk up to 1.0.35 privilege defined with unsafe actions

CVE-2025-8801 | Open5GS up to 2.7.5 AMF src/amf/gmm-sm.c gmm_state_exception denial of service (Issue 3977)

CVE-2025-0910 | Tracker Software PDF-XChange Editor U3D File Parser out-of-bounds write

CVE-2024-25308 | code-projects Simple School Managment System 1.0 School/teacher_login.php name sql injection