SQL Injection Vulnerability in WP Time Slots Booking Form by WordPress
CVE-2026-48882
8.5HIGH
What is CVE-2026-48882?
A SQL Injection vulnerability exists in the WP Time Slots Booking Form plugin, impacting versions up to 1.2.50. This flaw may allow attackers to manipulate SQL queries, potentially leading to unauthorized data access or modification. Proper input validation and sanitization can mitigate the risks associated with this vulnerability, safeguarding sensitive information in the database.
Affected Version(s)
WP Time Slots Booking Form <= 1.2.50