浏览 76+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-6492 | arnobt78 Hotel Booking Management System Health Check Endpoint detailed information disclosure | arnobt78 | Hotel Booking Management System | Medium | 5.3 | 2026-04-17 14:00:15 | Deep Dive |
| CVE-2026-5705 | code-projects Online Hotel Booking Booking Endpoint booknow.php cross site scripting | code-projects | Online Hotel Booking | Medium | 4.3 | 2026-04-06 23:30:12 | Deep Dive |
| CVE-2019-25530 | uHotelBooking System Lastest SQL Injection via system_page Parameter | Hotel-Booking-Script | uHotelBooking System | High | 8.2 | 2026-03-12 15:37:01 | Deep Dive |
| CVE-2025-68005 | WordPress Easy Hotel Booking plugin <= 1.9.2 - Broken Access Control vulnerability | themewant | Easy Hotel Booking | Medium | 6.5 | 2026-02-20 15:46:34 | Deep Dive |
| CVE-2025-14075 | WP Hotel Booking <= 2.2.7 - Unauthenticated Sensitive Information Exposure via 'email' Parameter | thimpress | WP Hotel Booking | Medium | 5.3 | 2026-01-17 02:22:31 | Deep Dive |
| CVE-2025-14352 | Awesome Hotel Booking <= 1.0.3 - Incorrect Authorization to Unauthenticated Arbitrary Booking Modification | nahian91 | Awesome Hotel Booking | Medium | 5.3 | 2026-01-07 09:20:55 | Deep Dive |
| CVE-2025-63001 | WordPress Hotel Booking plugin <= 3.8 - Broken Access Control vulnerability | nicdark | Hotel Booking | Medium | 5.3 | 2025-12-31 14:56:30 | Deep Dive |
| CVE-2025-66078 | WordPress Hotel Booking Lite plugin <= 5.2.3 - Remote Code Execution (RCE) vulnerability | jetmonsters | Hotel Booking Lite | Critical | 9.1 | 2025-12-18 07:22:18 | Deep Dive |
| CVE-2025-49918 | WordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.8.2 - Sensitive Data Exposure vulnerability | e4jvikwp | VikBooking Hotel Booking Engine & PMS | Medium | 5.9 | 2025-12-18 07:21:44 | Deep Dive |
| CVE-2025-63012 | WordPress WP Hotel Booking plugin <= 2.2.8 - Cross Site Request Forgery (CSRF) vulnerability | ThimPress | WP Hotel Booking | Medium | 4.3 | 2025-12-09 14:52:28 | Deep Dive |
| CVE-2025-63011 | WordPress WP Hotel Booking plugin <= 2.2.8 - Cross Site Scripting (XSS) vulnerability | ThimPress | WP Hotel Booking | - | - | 2025-12-09 14:52:28 | Deep Dive |
| CVE-2025-63013 | WordPress WP Hotel Booking plugin <= 2.2.7 - Sensitive Data Exposure vulnerability | ThimPress | WP Hotel Booking | Medium | 4.3 | 2025-12-09 14:52:28 | Deep Dive |
| CVE-2025-64287 | WordPress Alloggio - Hotel Booking Theme theme <= 1.8 - Local File Inclusion vulnerability | Edge-Themes | Alloggio - Hotel Booking | High | 8.1 | 2025-11-06 15:56:13 | Deep Dive |
| CVE-2025-5803 | WordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.8.2 - Broken Access Control vulnerability | e4jvikwp | VikBooking Hotel Booking Engine & PMS | Medium | 5.3 | 2025-11-06 15:54:19 | Deep Dive |
| CVE-2025-57938 | WordPress Easy Hotel Booking plugin <= 1.9.2 - Cross Site Scripting (XSS) vulnerability | themewant | Easy Hotel Booking | Medium | 6.5 | 2025-09-22 18:25:00 | Deep Dive |
| CVE-2025-58661 | WordPress eZee Online Hotel Booking Engine Plugin <= 1.0.0 - Cross Site Scripting (XSS) Vulnerability | eZee Technosys | eZee Online Hotel Booking Engine | Medium | 5.9 | 2025-09-22 18:23:02 | Deep Dive |
| CVE-2025-8942 | WP Hotel Booking < 2.2.3 - Subscriber+ Rating Manipulation | Unknown | WP Hotel Booking | - | - | 2025-09-18 06:00:06 | Deep Dive |
| CVE-2024-8860 | Tourfic <= 2.14.5 - Missing Authorization in Multiple Functions | themefic | Tourfic – Travel Booking, Hotel Booking & Car Rental WordPress Plugin | Medium | 4.3 | 2025-08-26 07:06:04 | Deep Dive |
| CVE-2025-6917 | code-projects Online Hotel Booking registration.php sql injection | code-projects | Online Hotel Booking | High | 7.3 | 2025-06-30 17:32:06 | Deep Dive |
| CVE-2025-53259 | WordPress Hotel Booking plugin <= 3.7 - Local File Inclusion Vulnerability | nicdark | Hotel Booking | High | 7.5 | 2025-06-27 13:21:07 | Deep Dive |