iGMS Direct Booking Security Settings Can Be Overridden

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

5.3

iGMS Direct Booking Security Settings Can Be Overridden

CVE-2026-39652

Summary

A security setting in iGMS Direct Booking can be incorrectly configured, allowing unauthorized access to certain features. This means that users who shouldn't have access might still be able to make changes or see sensitive information. Update to the latest version of iGMS Direct Booking to fix this issue.

Original title

Missing Authorization vulnerability in igms iGMS Direct Booking igms-direct-booking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects iGMS Direct Booking: f...

Original description

Vulnerability type

CWE-862 Missing Authorization

https://patchstack.com/database/Wordpress/Plugin/igms-direct-booking/vulnerabili...

Published: 8 Apr 2026 · Updated: 10 Apr 2026 · First seen: 8 Apr 2026