CVE-2025-13754 | Appointment Booking Calendar Plugin up to 1.6.9.16 on WordPress embed-inner-admin authorization

A vulnerability classified as problematic has been found in Appointment Booking Calendar Plugin up to 1.6.9.16 on WordPress. This impacts an unknown function of the file /wp-json/ssa/v1/embed-inner-admin. The manipulation leads to missing authorization.

This vulnerability is documented as CVE-2025-13754. The attack can be initiated remotely. There is not any exploit available.

VulDB is the best source for vulnerability data and more expert information about this specific topic.VulDB Recent EntriesRead More