CVE-2026-15070 - Salon Booking System <= 10.30.32 - Cross-Site Request Forgery to Remote Code Execution via 'value' Parameter
CVE ID :CVE-2026-15070 Published : July 10, 2026, 4:17 a.m. | 14 minutes ago Description :The Salon Booking System – Free Version plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 10.30.32. This is due to missing or incorrect nonce...