vulnerability

WordPress Plugin: sf-booking: CVE-2025-5947: Authorization Bypass Through User-Controlled Key

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
10	(AV:N/AC:L/Au:N/C:C/I:C/A:C)	Jul 31, 2025	Aug 1, 2025	Aug 4, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

Jul 31, 2025

Added

Aug 1, 2025

Modified

Aug 4, 2025

Description

The Service Finder Bookings plugin for WordPress is vulnerable to privilege escalation via authentication bypass in all versions up to, and including, 6.0. This is due to the plugin not properly validating a user's cookie value prior to logging them in through the service_finder_switch_back() function. This makes it possible for unauthenticated attackers to login as any user including admins.

Solution

sf-booking-plugin-cve-2025-5947

References

URL-https://www.cve.org/CVERecord?id=CVE-2025-5947
URL-https://www.wordfence.com/threat-intel/vulnerabilities/id/c1fe4f60-d93b-4071-90ae-ac863c17fe19?source=api-prod
CVE-2025-5947
https://attackerkb.com/topics/CVE-2025-5947
CWE-639

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today