Wp Hotel Booking Security Vulnerabilities and Issues — Wp Hotel Booking CVE List

Lucene search

ThimpressWp Hotel Booking

3 matches found

CVE•added 2022/08/22 3:15 p.m.•60 views

CVE-2021-36852

Cross-Site Request Forgery (CSRF) vulnerability in ThimPress WP Hotel Booking plugin

8CVSS6.1AI score0.00088EPSS

CVE•added 2024/10/02 5:15 a.m.•40 views

CVE-2024-7855

The WP Hotel Booking plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the update_review() function in all versions up to, and including, 2.1.2. This makes it possible for authenticated attackers, with subscriber-level access and above, to upload ar...

8.8CVSS8.9AI score0.0836EPSS

CVE•added 2024/11/04 2:15 p.m.•33 views

CVE-2024-51582

Path Traversal: '.../...//' vulnerability in ThimPress WP Hotel Booking allows PHP Local File Inclusion.This issue affects WP Hotel Booking: from n/a through 2.1.4.

8.8CVSS7.9AI score0.0031EPSS