WeDesignTech Ultimate Booking Addon: Unsecured Access to Sensitive Information

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.5

WeDesignTech Ultimate Booking Addon: Unsecured Access to Sensitive Information

CVE-2025-69340

Summary

A security weakness in the WeDesignTech Ultimate Booking Addon for certain versions allows unauthorized access to sensitive information. This could lead to sensitive data being accessed or modified by someone who shouldn't have access. Update the Addon to the latest version (1.0.4 or later) to fix this issue.

Original title

Missing Authorization vulnerability in BuddhaThemes WeDesignTech Ultimate Booking Addon wedesigntech-ultimate-booking-addon allows Exploiting Incorrectly Configured Access Control Security Levels.T...

Original description

nvd CVSS3.1 7.5

Vulnerability type

CWE-862 Missing Authorization

https://patchstack.com/database/Wordpress/Plugin/wedesigntech-ultimate-booking-a...

Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026