cleantalk
Vulnerabilities and Security Researches

Online Service Booking System & Reservation Plugin – WpBookingly, CVE-2026-27405

CVE, Research URL

CVE-2026-27405

Home page URL

Security reports for Online Service Booking System & Reservation Plugin – WpBookingly

Application

Online Service Booking System & Reservation Plugin – WpBookingly

Published on
May 20, 2026
Research Description
Missing Authorization vulnerability in Magepeople inc. WpBookingly allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WpBookingly: from n/a through 1.2.9.
Affected versions
max 1.3.0.
Status
vulnerable
Previous vulnerability researches
BLOGCHAT Chat System (CVE-2026-8420) , May 23, 2026
New vulnerability
Logo Manager For Enamad (CVE-2026-6549) , May 23, 2026
Sentence To SEO (keywords, description and tags) (CVE-2026-6391) , May 23, 2026
Oliver POS – A WooCommerce Point of Sale (POS) (CVE-2026-6072) , May 23, 2026
Amazon Scraper (CVE-2026-8419) , May 23, 2026
WPB Floating Menu or Categories – Sticky Floating Side Menu & Categories with Icons (CVE-2026-4811) , May 23, 2026