CVE-2026-40780 | Liquid Web/StellarWP BookIt Plugin prior 2.5.4.1 on WordPress authentication bypass

A vulnerability identified as critical has been detected in Liquid Web/StellarWP BookIt Plugin on WordPress. This affects an unknown part. The manipulation leads to authentication bypass using alternate channel.

This vulnerability is referenced as CVE-2026-40780. Remote exploitation of the attack is possible. No exploit is available.

You should upgrade the affected component.VulDB Recent EntriesRead More