Unauthenticated Sensitive Data Disclosure vulnerability discovered by Huli (Cymetrics) in WordPress Booking Package plugin (versions <= 1.5.28).
Update the WordPress Booking Package plugin to the latest available version (at least 1.5.29).