3 matches found
CVE-2025-49299 WordPress WebHotelier plugin <= 1.9.2 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPlugged.com WebHotelier webhotelier allows Stored XSS.This issue affects WebHotelier: from n/a through = 1.9.2...
CVE-2025-49299
CVE-2025-49299 is a Stored XSS in WebHotelier for WordPress (WebHotelier) affecting up to version 1.9.2 . The root cause is improper input neutralization during web page generation . The vulnerability is noted as patched in version 1.9.2 ; CVSSv3.1 base score is 6.5 (Medium) . Action: upgrade to ...
WordPress WebHotelier plugin <= 1.9.2 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by Peter Thaleikis in WordPress Plugin WebHotelier versions = 1.9.2...