TrueBooker's Appointment Booking System Allows Unauthorized Access

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

TrueBooker's Appointment Booking System Allows Unauthorized Access

CVE-2026-39663

Summary

An issue in TrueBooker's appointment booking system allows users with incorrect security settings to access areas they shouldn't. This means unauthorized users can potentially view or modify sensitive information. To mitigate this, update to a version of TrueBooker that fixes this issue.

Original title

Missing Authorization vulnerability in themetechmount TrueBooker truebooker-appointment-booking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects TrueBooker...

Original description

Vulnerability type

CWE-862 Missing Authorization

https://patchstack.com/database/Wordpress/Plugin/truebooker-appointment-booking/...

Published: 8 Apr 2026 · Updated: 9 Apr 2026 · First seen: 8 Apr 2026