Privilege Escalation in Salon Booking System Pro by WordPress Chef
CVE-2026-25334

Currently unrated

Key Information:

Vendor

WordPress
Status
Salon Booking System Pro
Vendor
CVE Published:
25 March 2026

What is CVE-2026-25334?

The Salon Booking System Pro plugin by WordPress Chef is susceptible to an incorrect privilege assignment vulnerability that could allow unauthorized users to escalate their privileges. This issue compromises the integrity and security of the application, making it critical for users to update to version 10.30.12 or later to mitigate potential exploitation.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Salon Booking System Pro <= n/a

References

https://patchstack.com/database/Wordpress/Plugin/salon-bo...
vdb-entry

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Phat RiO | Patchstack Bug Bounty Program
JSON
.