WP Booking System Exposes Sensitive Data in Sent Information

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

5.8

WP Booking System Exposes Sensitive Data in Sent Information

CVE-2025-68515

Summary

The WP Booking System may inadvertently send sensitive data, such as personal or financial information, to unauthorized parties. This is a risk because it could compromise user privacy and security. To mitigate this risk, update to the latest version of WP Booking System (version 2.0.19.13 or later) if you're running an affected version.

Original title

Insertion of Sensitive Information Into Sent Data vulnerability in Roland Murg WP Booking System wp-booking-system allows Retrieve Embedded Sensitive Data.This issue affects WP Booking System: from...

Original description

Vulnerability type

CWE-201

https://patchstack.com/database/Wordpress/Plugin/wp-booking-system/vulnerability...

Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026