| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-24396 | WordPress VikBooking Hotel Booking Engine & PMS Plugin <= 1.5.11 is vulnerable to Cross Site Scripting (XSS) | E4J s.r.l. | VikBooking Hotel Booking Engine & PMS | Medium | 5.9 | 2023-04-06 13:14:37 | Deep Dive |
| CVE-2023-1374 | Solidres <= 0.9.4 - Authenticated (Admin+) Stored Cross-Site Scripting | solidres | Solidres – Hotel booking plugin for WordPress | Medium | 4.4 | 2023-03-13 12:31:14 | Deep Dive |
| CVE-2021-36852 | WordPress WP Hotel Booking plugin <= 1.10.5 - Cross-Site Request Forgery (CSRF) vulnerability | ThimPress | WP Hotel Booking | Medium | 4.3 | 2022-08-22 14:45:48 | Deep Dive |
| CVE-2022-2673 | Rigatur Online Booking and Hotel Management System POST Request login.php sql injection | Rigatur | Online Booking and Hotel Management System | Medium | 6.3 | 2022-08-05 11:40:42 | Deep Dive |
| CVE-2022-2263 | Online Hotel Booking System Room edit_room_cat.php sql injection | unspecified | Online Hotel Booking System | Medium | 4.7 | 2022-07-12 14:10:14 | Deep Dive |
| CVE-2022-2262 | Online Hotel Booking System Room edit_all_room.php sql injection | unspecified | Online Hotel Booking System | Medium | 4.7 | 2022-07-12 14:10:10 | Deep Dive |
| CVE-2017-20125 | Online Hotel Booking System Pro roomtype-details.php sql injection | unspecified | Online Hotel Booking System Pro | Medium | 6.3 | 2022-06-30 05:05:26 | Deep Dive |
| CVE-2017-20124 | Online Hotel Booking System Pro Plugin roomtype-details.php sql injection | unspecified | Online Hotel Booking System Pro Plugin | Medium | 6.3 | 2022-06-30 05:05:25 | Deep Dive |
| CVE-2022-29443 | WordPress Hotel Booking plugin <= 3.0 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities | Nicdark | Hotel Booking (WordPress plugin) | Medium | 4.1 | 2022-06-15 18:55:16 | Deep Dive |
| CVE-2022-1528 | VikBooking < 1.5.9 - Reflected Cross-Site Scripting | Unknown | VikBooking Hotel Booking Engine & PMS | 中危 | - | 2022-05-30 08:35:50 | Deep Dive |
| CVE-2022-29449 | WordPress Opal Hotel Room Booking plugin <= 1.2.7 - Stored Cross-Site Scripting (XSS) vulnerability | wpopal | Opal Hotel Room Booking (WordPress plugin) | Medium | 4.1 | 2022-05-19 15:15:18 | Deep Dive |
| CVE-2022-1409 | VikBooking Hotel Booking Engine & PMS < 1.5.8 - Admin+ PHP File Upload | Unknown | VikBooking Hotel Booking Engine & PMS | 高危 | - | 2022-05-16 14:30:58 | Deep Dive |
| CVE-2022-1408 | VikBooking Hotel Booking Engine & PMS < 1.5.8 - Admin+ Stored Cross-Site Scripting | Unknown | VikBooking Hotel Booking Engine & PMS | 中危 | - | 2022-05-16 14:30:56 | Deep Dive |
| CVE-2022-1407 | VikBooking Hotel Booking Engine & PMS < 1.5.7 - Stored Cross-Site Scripting via CSRF | Unknown | VikBooking Hotel Booking Engine & PMS | 中危 | - | 2022-05-16 14:30:55 | Deep Dive |
| CVE-2022-27863 | WordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.5.3 - Sensitive Data Exposure vulnerability | E4J s.r.l. | VikBooking Hotel Booking Engine & PMS (WordPress plugin) | Medium | 5.3 | 2022-04-19 20:26:27 | Deep Dive |
| CVE-2022-27862 | WordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.5.3 - Arbitrary File Upload leading to RCE | E4J s.r.l. | VikBooking Hotel Booking Engine & PMS (WordPress plugin) | Critical | 9.8 | 2022-04-19 20:26:26 | Deep Dive |