Threats Tagged 'cve-2026-11887'
View all threats tagged with 'cve-2026-11887'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-11887'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-11887: CWE-862 Missing Authorization in Salon Booking SystemCVE-2026-11887 0 CVE-2026-11887 is a medium severity vulnerability in the Salon Booking System WordPress plugin before version 10.30.20. It lacks proper authorization checks on an AJAX action, allowing any authenticated user, including low-privilege roles like subscribers, to modify plugin settings and bypass manual approval of new bookings. This could lead to unauthorized changes in booking management without administrative consent. Join the discussion | CVE Database V5 | 07/01/2026, 06:00:02 UTC Added: 07/01/2026, 10:51:38 UTC |
Showing 1 to 1 of 1 result