CVE-2026-27388

NONE EPSS 0.02%

Mar 05, 2026

Updated Mar 05, 2026

Parameter	Value
Type	CWE-862 (Missing Authorization)
Public PoC	No

Missing Authorization vulnerability in designthemes DesignThemes Booking Manager designthemes-booking-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects DesignThemes Booking Manager: from n/a through <= 2.0.

Weakness Type (CWE)

CWE-862 Missing Authorization

References 1

https://patchstack.com/database/Wordpress/Plugin/designthemes-booking-manager/v…

audit@patchstack.com

Share Post Share Share Share

CVE Details

CVE ID

CVE-2026-27388

Published Date

Mar 05, 2026

Vendor

Not specified

Severity

NONE

Exploit Prediction (EPSS)

Probability of Exploit 0.02%

Likelihood of exploitation in next 30 days

Percentile: 5.1th percentile (higher than 5.1% of all CVEs)

Standard patching cycle

Impact

Minimal impact

Source

View Advisory

Menu

CVE-2026-27388

Weakness Type (CWE)

References 1

CVE Details

Editor's Choice

Menu

CVE-2026-27388

Weakness Type (CWE)

References 1

CVE Details

Editor's Choice

Stay informed on cybersecurity