7 matches found
CVE-2025-64275 WordPress Booking Manager plugin <= 2.1.17 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpdevelop Booking Manager booking-manager allows Stored XSS.This issue affects Booking Manager: from n/a through = 2.1.17...
CVE-2025-64275
CVE-2025-64275 affects the WordPress Booking Manager plugin. A Stored Cross-Site Scripting (XSS) flaw arises from improper input neutralization during web page generation in Booking Manager versions up to and including 2.1.17. Exploitation could allow injected scripts to run in pages viewed by ot...
CVE-2025-47585
CVE-2025-47585 covers the WordPress plugin Booking and Rental Manager for WooCommerce (versions
WordPress Booking Manager Plugin <= 2.1.5 is vulnerable to SQL Injection
Software Booking Manager Type Plugin Vulnerable versions = 2.1.5 Fixed in 2.1.6 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2023-50840 Patch priority Medium CVSS severity Medium 8.5 Developer Claim ownership PSID 1f8bbef81167 Credits Ngô Thiên An ancorn from VNPT-VCI Required...
WordPress Booking Manager plugin server-side request forgery vulnerability
Linux Kernel Memory Misreference Vulnerability CNVD-2023-65164...
WordPress Plugin Booking Manager 代码问题漏洞
Linux Kernel Memory Misreference Vulnerability CNVD-2023-65164...
WordPress Booking Manager Plugin < 2.0.29 is vulnerable to Server Side Request Forgery (SSRF)
Software Booking Manager Type Plugin Vulnerable versions 2.0.29 Fixed in 2.0.29 OWASP Top 10 A5: Broken Access Control Classification Server Side Request Forgery SSRF CVE CVE-2023-1977 Patch priority High CVSS severity High 6.4 Developer Claim ownership PSID dc7cead73df5 Credits Shreya Pohekar...