CVE-2025-13318 | codepeople Booking Calendar Contact Form Plugin up to 1.2.60 on WordPress dex_bccf_check_IPN_verification dex_bccf_ipn authorization

A vulnerability was found in codepeople Booking Calendar Contact Form Plugin up to 1.2.60 on WordPress. It has been declared as problematic. This issue affects the function dex_bccf_check_IPN_verification. Executing manipulation of the argument dex_bccf_ipn can lead to missing authorization.

The identification of this vulnerability is CVE-2025-13318. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More