An Authentication Bypass (CVE-2025-5947) in Service Finder Bookings plugin allows any unauthenticated attacker to log in as an administrator. Over 13,800 exploit attempts detected. Update to v6.1 immediately.
First seen on hackread.com
Jump to article: hackread.com/auth-bypass-service-finder-wordpress-plugin-exploit/
