Vulnerabilities

CVE-2025-12685

by Fred · 02/01/2026

The WPBookit WordPress plugin through 1.0.7 lacks a CSRF check when deleting customers. This could allow an unauthenticated attacker to delete any customer through a CSRF attack.

More information : https://wpscan.com/vulnerability/e5ba488a-b43d-4c5f-9716-4b24701999f3/

Similar

Tags: Cybersecurity Alert