A vulnerability was found in Ovatheme BookPro Plugin up to 1.1.0 on WordPress. It has been classified as critical . This affects an unknown part. Performing a manipulation results in path traversal. This vulnerability is identified as CVE-2026-27400 . The attack can be initiated remotely. There is not any exploit available.