{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-25334", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "state": "PUBLISHED", "assignerShortName": "Patchstack", "dateReserved": "2026-02-02T12:52:37.306Z", "datePublished": "2026-03-25T16:14:41.531Z", "dateUpdated": "2026-04-28T16:14:55.647Z"}, "containers": {"cna": {"affected": [{"collectionURL": "https://wordpress.org/plugins", "defaultStatus": "unaffected", "packageName": "salon-booking-plugin-pro", "product": "Salon Booking System Pro", "vendor": "wordpresschef", "versions": [{"changes": [{"at": "10.30.12", "status": "unaffected"}], "lessThanOrEqual": "10.30.12", "status": "affected", "version": "0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Phat RiO | Patchstack Bug Bounty Program"}], "datePublic": "2026-04-22T14:18:28.662Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Incorrect Privilege Assignment vulnerability in wordpresschef Salon Booking System Pro salon-booking-plugin-pro allows Privilege Escalation.<p>This issue affects Salon Booking System Pro: from n/a through < 10.30.12.</p>"}], "value": "Incorrect Privilege Assignment vulnerability in wordpresschef Salon Booking System Pro salon-booking-plugin-pro allows Privilege Escalation.This issue affects Salon Booking System Pro: from n/a through < 10.30.12."}], "impacts": [{"capecId": "CAPEC-233", "descriptions": [{"lang": "en", "value": "Privilege Escalation"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-266", "description": "Incorrect Privilege Assignment", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-04-28T16:14:55.647Z"}, "references": [{"tags": ["vdb-entry"], "url": "https://patchstack.com/database/Wordpress/Plugin/salon-booking-plugin-pro/vulnerability/wordpress-salon-booking-system-pro-plugin-10-30-12-account-takeover-vulnerability?_s_id=cve"}], "title": "WordPress Salon Booking System Pro plugin < 10.30.12 - Account Takeover vulnerability"}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-27T14:43:25.458102Z", "id": "CVE-2026-25334", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-28T01:29:26.671Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-25334", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-27T14:43:25.458102Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-27T14:42:35.478Z"}}], "cna": {"title": "WordPress Salon Booking System Pro plugin < 10.30.12 - Account Takeover vulnerability", "credits": [{"lang": "en", "type": "finder", "value": "Phat RiO | Patchstack Bug Bounty Program"}], "impacts": [{"capecId": "CAPEC-233", "descriptions": [{"lang": "en", "value": "Privilege Escalation"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "wordpresschef", "product": "Salon Booking System Pro", "versions": [{"status": "affected", "changes": [{"at": "10.30.12", "status": "unaffected"}], "version": "0", "versionType": "custom", "lessThanOrEqual": "10.30.12"}], "packageName": "salon-booking-plugin-pro", "collectionURL": "https://wordpress.org/plugins", "defaultStatus": "unaffected"}], "datePublic": "2026-04-22T14:18:28.662Z", "references": [{"url": "https://patchstack.com/database/Wordpress/Plugin/salon-booking-plugin-pro/vulnerability/wordpress-salon-booking-system-pro-plugin-10-30-12-account-takeover-vulnerability?_s_id=cve", "tags": ["vdb-entry"]}], "descriptions": [{"lang": "en", "value": "Incorrect Privilege Assignment vulnerability in wordpresschef Salon Booking System Pro salon-booking-plugin-pro allows Privilege Escalation.This issue affects Salon Booking System Pro: from n/a through < 10.30.12.", "supportingMedia": [{"type": "text/html", "value": "Incorrect Privilege Assignment vulnerability in wordpresschef Salon Booking System Pro salon-booking-plugin-pro allows Privilege Escalation.<p>This issue affects Salon Booking System Pro: from n/a through < 10.30.12.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-266", "description": "Incorrect Privilege Assignment"}]}], "providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-04-28T16:14:55.647Z"}}}, "cveMetadata": {"cveId": "CVE-2026-25334", "state": "PUBLISHED", "dateUpdated": "2026-04-28T16:14:55.647Z", "dateReserved": "2026-02-02T12:52:37.306Z", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "datePublished": "2026-03-25T16:14:41.531Z", "assignerShortName": "Patchstack"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Incorrect Privilege Assignment vulnerability in wordpresschef Salon Booking System Pro salon-booking-plugin-pro allows Privilege Escalation.This issue affects Salon Booking System Pro: from n/a through < 10.30.12."}, {"lang": "es", "value": "La vulnerabilidad de Asignaci\u00f3n Incorrecta de Privilegios en wordpresschef Salon Booking System Pro salon-booking-plugin-pro permite la escalada de privilegios. Este problema afecta a Salon Booking System Pro: desde n/a hasta &lt; 10.30.12."}], "id": "CVE-2026-25334", "lastModified": "2026-04-24T16:32:53.997", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 5.9, "source": "audit@patchstack.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-03-25T17:16:44.383", "references": [{"source": "audit@patchstack.com", "url": "https://patchstack.com/database/Wordpress/Plugin/salon-booking-plugin-pro/vulnerability/wordpress-salon-booking-system-pro-plugin-10-30-12-account-takeover-vulnerability?_s_id=cve"}], "sourceIdentifier": "audit@patchstack.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-266"}], "source": "audit@patchstack.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "unaffected", "versions": null}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "product": "wordpress", "vendor": "wordpress"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,10.30.12)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "[10.30.12,*]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "Salon Booking System Pro", "source": "cna", "vendor": "wordpresschef"}, "product": "salon_booking_system_pro", "vendor": "wordpresschef"}], "analysis": {"en": {"generated_at": "2026-03-27T16:27:44.270113+00:00", "value": {"mitigation_remediation": ["Upgrade Salon Booking System Pro to version 10.30.12 or later", "If upgrading is not possible immediately, disable the plugin until a patch becomes available", "Limit user roles to the minimum required privileges and review role permissions regularly", "Apply the principle of least privilege to WordPress user accounts", "Monitor for suspicious login activity and unauthorized changes to user roles"], "summary": {"action": "Immediate Patch", "impact": "Privilege Escalation"}, "threat_synthesis": {"affected_systems": "The attack impacts installations of Salon Booking System Pro through version 10.30.11, including all WordPress sites that have the plugin enabled. Users should verify the plugin version and consult the vendor for updates.", "description_and_impact": "This vulnerability stems from incorrect privilege assignment within the Salon Booking System Pro plugin for WordPress, allowing an attacker who is authenticated but not privileged to elevate their access rights. The result is a full account takeover, giving the attacker control over site settings and user data. The weakness corresponds to improper privilege management.", "risk_and_exploitability": "The CVSS score of 8.1 indicates high severity. The EPSS score of less than 1% suggests that current exploitation is unlikely, and it is not listed in the CISA KEV catalog. Nonetheless, the likely attack vector is a remote attacker who can log in with a non\u2011admin account and then exploit the privilege\u2011escalation flaw, potentially compromising the entire site."}}}}, "created": "2026-03-25T21:34:02.789250+00:00", "updated": "2026-03-27T20:26:24.878534+00:00", "vendors": ["wordpress", "wordpress$PRODUCT$wordpress", "wordpresschef", "wordpresschef$PRODUCT$salon_booking_system_pro"]}