CVE-2026-12378 - BookingPress <= 1.1.28 - Unauthenticated PHP Object Injection
CVE ID :CVE-2026-12378 Published : July 8, 2026, 7:16 a.m. | 5 hours, 58 minutes ago Description :The Appointment Booking Calendar Plugin and Scheduling Plugin WordPress plugin through 1.1.28 does not validate data before passing it to a PHP deserialization function, allowing unauthenticated...