Fs-code Booknetic
3 CVEs affecting Fs-code Booknetic. Latest disclosed: 2026-06-17. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-13146 | High | 8.8 | 2025-03-26 | The Booknetic WordPress plugin before 4.1.5 does not have CSRF check when creating Staff accounts, which could allow attackers to make logged in admin add arbi… |
CVE-2026-25439 | High | 8.1 | 2026-06-17 | Unauthenticated Broken Authentication in Booknetic <= 4.8.5 versions. |
CVE-2025-26926 | Medium | 4.3 | 2025-02-25 | Cross-Site Request Forgery (CSRF) vulnerability in fs-code Booknetic booknetic.This issue affects Booknetic: from n/a through <= 4.0.9. |