Service Finder Bookings WordPress Plugin Privilege Escalation Vulnerability
Vulnerability
A privilege escalation vulnerability allowing account takeover has been identified in the Service Finder Bookings plugin for WordPress, affecting all versions through 5.0. The issue arises because the plugin fails to properly verify a user's identity before executing a post-booking auto-login or updating profile details such as passwords. This vulnerability enables unauthenticated attackers to either log in as any user with a known email address or change the password of any user, including administrators, to gain access to their accounts.
Impact
Exploitation of this vulnerability allows for unauthorized access to user accounts, including those of administrators, by taking over their accounts through password changes or unauthorized logins.
Remediation
Users can update to version 5.1 or a newer patched version to address this vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.