vulnerability

WordPress Plugin: sf-booking: CVE-2025-5947: Authorization Bypass Through User-Controlled Key

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

Jul 31, 2025

Added

Aug 1, 2025

Modified

Apr 30, 2026

Description

The Service Finder Bookings plugin for WordPress is vulnerable to privilege escalation via authentication bypass in all versions up to, and including, 6.0. This is due to the plugin not properly validating a user's cookie value prior to logging them in through the service_finder_switch_back() function. This makes it possible for unauthenticated attackers to login as any user including admins.

Solution

sf-booking-plugin-cve-2025-5947

References

https://www.cve.org/CVERecord?id=CVE-2025-5947
https://www.wordfence.com/threat-intel/vulnerabilities/id/c1fe4f60-d93b-4071-90ae-ac863c17fe19?source=api-prod
https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-23319
CVE-2025-5947
https://attackerkb.com/topics/CVE-2025-5947
CWE-639
EUVD-EUVD-2025-23319

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report