Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| fs-code | Booknetic | unaffected |
|
No data.
No data.
| Vendor | Product | Confidence | Versions | ||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| Fs-code | Booknetic | 100% |
|
||||||||
| Wordpress | Wordpress | 80% |
|
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
No remediation available yet.
Tracking
Sign in to view the affected projects.
No advisories yet.
Wed, 17 Jun 2026 13:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Fs-code
Fs-code booknetic Wordpress Wordpress wordpress |
|
| Vendors & Products |
Fs-code
Fs-code booknetic Wordpress Wordpress wordpress |
|
| Metrics |
ssvc
|
Wed, 17 Jun 2026 11:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Unauthenticated Broken Authentication in Booknetic <= 4.8.5 versions. | |
| Title | WordPress Booknetic plugin <= 4.8.5 - Account Takeover vulnerability | |
| Weaknesses | CWE-288 | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-17T12:37:48.671Z
Reserved: 2026-02-02T12:53:40.963Z
Link: CVE-2026-25439
Vulnrichment
Updated: 2026-06-17T12:37:35.720Z
NVD
No data.
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-06-17T13:15:04Z
-
CWE-288
Authentication Bypass Using an Alternate Path or Channel