CVE-2026-6960

BookingPress Pro <= 5.6 - Unauthenticated Arbitrary File Upload via Signature Custom Field

CVSS 9.8 CRITICALEPSS 0.7%CWE-434

Vexday Risk Score

48Atención

Decisión SSVC (CISA)

Attend

PoC disponible → seguir de cerca

CVSS 9.8EPSS 0.7%KEV nãoPoC públicaNuclei —Metasploit —Patch —

Ciclo de vida

21 may 2026Publicada en NVD

23 may 2026PoC pública

Recomendación: Planificar corrección próxima — ya existe PoC pública.

The BookingPress Pro plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'bookingpress_validate_submitted_booking_form_func' function in all versions up to, and including, 5.6. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible. Note: The vulnerability can only be exploited if a signature custom field is added to the booking form.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Productos afectados

Repute Infosystems · BookingPress Appointment Booking Pro

PoCs públicas encontradas — 1

githubgithub.com/xxconi/CVE-2026-6960★ 0

⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.bookingpressplugin.com/https://www.wordfence.com/threat-intel/vulnerabilities/id/ed738dc5-7848-4b04-a3fd-317cc366acfa?source=cve