Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-5991
HistoryDec 26, 2023 - 7:15 p.m.

Design/Logic Flaw

2023-12-2619:15:00
PRIOn knowledge base
www.prio-n.com
4
hotel booking lite
wordpress plugin
logic flaw
unauthenticated users
file manipulation

7.3 High

AI Score

Confidence

High

0.172 Low

EPSS

Percentile

96.1%

JSON

The Hotel Booking Lite WordPress plugin before 4.8.5 does not validate file paths provided via user input, as well as does not have proper CSRF and authorisation checks, allowing unauthenticated users to download and delete arbitrary files on the server

CPENameOperatorVersion
hotel_booking_litelt4.8.5

Related

nuclei 1
wpvulndb 1
nvd 1
cvelist 1
cve 1
wpexploit 1
nuclei
nuclei
Hotel Booking Lite < 4.8.5 - Arbitrary File Download & Deletion
2024-05-14 10:34:23
wpvulndb
wpvulndb
Hotel Booking Lite < 4.8.5 - Unauthenticated Arbitrary File Download & Deletion
2023-12-01 00:00:00
nvd
nvd
CVE-2023-5991
2023-12-26 19:15:08
cvelist
cvelist
CVE-2023-5991 Hotel Booking Lite < 4.8.5 - Unauthenticated Arbitrary File Download & Deletion
2023-12-26 18:33:14
cve
cve
CVE-2023-5991
2023-12-26 19:15:08
wpexploit
wpexploit
Hotel Booking Lite < 4.8.5 - Unauthenticated Arbitrary File Download & Deletion
2023-12-01 00:00:00

7.3 High

AI Score

Confidence

High

0.172 Low

EPSS

Percentile

96.1%

JSON
Related for PRION:CVE-2023-5991
nuclei1wpvulndb1nvd1cvelist1cve1wpexploit1