WordPress Salon Booking Pro Missing Authorization Vulnerability Allowing Access Control Exploitation

A missing authorization vulnerability has been identified in the WordPress Salon Booking Pro plugin, affecting versions through 10.10.2. This vulnerability allows unprivileged users to exploit incorrectly configured access control security levels, potentially leading to unauthorized actions or access.

Impact

Exploitation of this vulnerability could allow an unprivileged user to perform actions or access resources that require higher privileges, due to the lack of proper authorization checks.