PatchSiren

WP BASE Booking CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH WP BASE Booking CVE published 2026-06-15

CVE-2026-39587

CVE-2026-39587 is a high-severity vulnerability in the WP BASE Booking plugin, with a CVSS score of 8.1. The vulnerability allows for unauthenticated privilege escalation and affects versions up to 5.9.0. The CVE was published on 2026-06-15T21:16:47.923Z and last modified on 2026-06-15T21:24:32.790Z.