A vulnerability, which was classified as critical, was found in Directorist Booking Plugin up to 2.4.1 on WordPress. Affected by this vulnerability is an unknown functionality. Such manipulation leads to sql injection.
This vulnerability is referenced as CVE-2026-22336. It is possible to launch the attack remotely. No exploit is available.
