“`html

Malicious entities are currently taking advantage of a significant security vulnerability affecting the Service Finder WordPress theme, which allows for unauthorized entry into any account, inclusive of administrators, and permits the takeover of vulnerable sites.

The authentication bypass vulnerability, recorded as CVE-2025-5947 (CVSS score: 9.8), impacts the Service Finder Bookings, a WordPress plugin included with the

“`