{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-25334", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "state": "PUBLISHED", "assignerShortName": "Patchstack", "dateReserved": "2026-02-02T12:52:37.306Z", "datePublished": "2026-03-25T16:14:41.531Z", "dateUpdated": "2026-03-27T14:44:23.655Z"}, "containers": {"cna": {"affected": [{"collectionURL": "https://wordpress.org/plugins", "defaultStatus": "unaffected", "packageName": "salon-booking-plugin-pro", "product": "Salon Booking System Pro", "vendor": "wordpresschef", "versions": [{"changes": [{"at": "10.30.12", "status": "unaffected"}], "lessThanOrEqual": "< 10.30.12", "status": "affected", "version": "n/a", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Phat RiO | Patchstack Bug Bounty Program"}], "datePublic": "2026-03-25T17:12:21.742Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Incorrect Privilege Assignment vulnerability in wordpresschef Salon Booking System Pro salon-booking-plugin-pro allows Privilege Escalation.<p>This issue affects Salon Booking System Pro: from n/a through < 10.30.12.</p>"}], "value": "Incorrect Privilege Assignment vulnerability in wordpresschef Salon Booking System Pro salon-booking-plugin-pro allows Privilege Escalation.This issue affects Salon Booking System Pro: from n/a through < 10.30.12."}], "impacts": [{"capecId": "CAPEC-233", "descriptions": [{"lang": "en", "value": "Privilege Escalation"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-266", "description": "Incorrect Privilege Assignment", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-03-25T16:14:41.531Z"}, "references": [{"tags": ["vdb-entry"], "url": "https://patchstack.com/database/Wordpress/Plugin/salon-booking-plugin-pro/vulnerability/wordpress-salon-booking-system-pro-plugin-10-30-12-account-takeover-vulnerability?_s_id=cve"}], "title": "WordPress Salon Booking System Pro plugin < 10.30.12 - Account Takeover vulnerability"}, "adp": [{"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-03-27T14:43:25.458102Z", "id": "CVE-2026-25334", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-27T14:44:23.655Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2026-25334", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-27T14:43:25.458102Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-27T14:42:35.478Z"}}], "cna": {"title": "WordPress Salon Booking System Pro plugin < 10.30.12 - Account Takeover vulnerability", "credits": [{"lang": "en", "type": "finder", "value": "Phat RiO | Patchstack Bug Bounty Program"}], "impacts": [{"capecId": "CAPEC-233", "descriptions": [{"lang": "en", "value": "Privilege Escalation"}]}], "affected": [{"vendor": "wordpresschef", "product": "Salon Booking System Pro", "versions": [{"status": "affected", "changes": [{"at": "10.30.12", "status": "unaffected"}], "version": "n/a", "versionType": "custom", "lessThanOrEqual": "< 10.30.12"}], "packageName": "salon-booking-plugin-pro", "collectionURL": "https://wordpress.org/plugins", "defaultStatus": "unaffected"}], "datePublic": "2026-03-25T17:12:21.742Z", "references": [{"url": "https://patchstack.com/database/Wordpress/Plugin/salon-booking-plugin-pro/vulnerability/wordpress-salon-booking-system-pro-plugin-10-30-12-account-takeover-vulnerability?_s_id=cve", "tags": ["vdb-entry"]}], "descriptions": [{"lang": "en", "value": "Incorrect Privilege Assignment vulnerability in wordpresschef Salon Booking System Pro salon-booking-plugin-pro allows Privilege Escalation.This issue affects Salon Booking System Pro: from n/a through < 10.30.12.", "supportingMedia": [{"type": "text/html", "value": "Incorrect Privilege Assignment vulnerability in wordpresschef Salon Booking System Pro salon-booking-plugin-pro allows Privilege Escalation.<p>This issue affects Salon Booking System Pro: from n/a through < 10.30.12.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-266", "description": "Incorrect Privilege Assignment"}]}], "providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-03-25T16:14:41.531Z"}}}, "cveMetadata": {"cveId": "CVE-2026-25334", "state": "PUBLISHED", "dateUpdated": "2026-03-27T14:44:23.655Z", "dateReserved": "2026-02-02T12:52:37.306Z", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "datePublished": "2026-03-25T16:14:41.531Z", "assignerShortName": "Patchstack"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Incorrect Privilege Assignment vulnerability in wordpresschef Salon Booking System Pro salon-booking-plugin-pro allows Privilege Escalation.This issue affects Salon Booking System Pro: from n/a through < 10.30.12."}, {"lang": "es", "value": "La vulnerabilidad de Asignaci\u00f3n Incorrecta de Privilegios en wordpresschef Salon Booking System Pro salon-booking-plugin-pro permite la escalada de privilegios. Este problema afecta a Salon Booking System Pro: desde n/a hasta &lt; 10.30.12."}], "id": "CVE-2026-25334", "lastModified": "2026-03-27T15:16:49.650", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-03-25T17:16:44.383", "references": [{"source": "audit@patchstack.com", "url": "https://patchstack.com/database/Wordpress/Plugin/salon-booking-plugin-pro/vulnerability/wordpress-salon-booking-system-pro-plugin-10-30-12-account-takeover-vulnerability?_s_id=cve"}], "sourceIdentifier": "audit@patchstack.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-266"}], "source": "audit@patchstack.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "unaffected", "versions": null}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "product": "wordpress", "vendor": "wordpress"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,10.30.12)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "[10.30.12,*]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "Salon Booking System Pro", "source": "cna", "vendor": "wordpresschef"}, "product": "salon_booking_system_pro", "vendor": "wordpresschef"}], "analysis": {"en": {"generated_at": "2026-03-25T18:06:55.658786+00:00", "value": {"mitigation_remediation": ["Update Salon Booking System Pro to version 10.30.12 or later."], "summary": {"action": "Patch Now", "impact": "Privilege Escalation leading to Account Takeover"}, "threat_synthesis": {"affected_systems": "WordPress users running the wordpresschef Salon Booking System Pro plugin of any version earlier than 10.30.12 are affected. This includes all releases from the first published version through the last vulnerable build.", "description_and_impact": "The vulnerability is an Incorrect Privilege Assignment flaw in the Salon Booking System Pro plugin, classified under CWE\u2011266. An attacker can elevate privileges from a non\u2011admin user to an administrator, enabling full control over booking management and potentially compromising related user accounts. The flaw allows direct takeover of any user account that can be accessed through the plugin\u2019s interfaces.", "risk_and_exploitability": "The risk is high because the vulnerability permits an attacker to gain complete administrative authority over the plugin and the WordPress installation it protects. No CVSS score appears in the provided data, and EPSS is unavailable, but the lack of a KEV listing does not reduce potential impact. The likely attack vector involves exploiting unauthenticated or low\u2011privileged access to the plugin\u2019s admin endpoints, as the plugin\u2019s code incorrectly assigns privileges during user interaction. Exploitation would require basic access to the site, making it feasible for an attacker with web access to the platform."}}}}, "created": "2026-03-25T21:34:02.789250+00:00", "updated": "2026-03-26T11:39:18.610596+00:00", "vendors": ["wordpress", "wordpress$PRODUCT$wordpress", "wordpresschef", "wordpresschef$PRODUCT$salon_booking_system_pro"]}