A vulnerability, which was classified as problematic, was found in BA Book Everything Plugin up to 1.6.20 on WordPress. This affects an unknown part of the component Password Handler. The manipulation leads to weak password recovery.
This vulnerability is uniquely identified as CVE-2024-8794. It is possible to initiate the attack remotely. There is no exploit available.