2 matches found
CVE-2025-47498
CVE-2025-47498 affects WordPress Hotel Booking (Hotel Booking plugin) versions n/a through 3.6 and is a Local File Inclusion due to improper filename control in PHP include/require statements. The CVSS v3.1 base score is 7.5 (HIGH) with network, high exploit complexity, low privileges, and no use...
WordPress Hotel + Bed and Breakfast Booking Calendar Theme | Bellevue Theme <= 4.2.2 is vulnerable to Broken Access Control
Software Hotel + Bed and Breakfast Booking Calendar Theme | Bellevue Type Theme Vulnerable versions = 4.2.2 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2025-39398 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID...