All 3 CVE vulnerabilities found in Hotel Booking Lite, with AI-generated Chinese analysis, references, and POCs.
Vendor: MotoPress
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-66078 | WordPress Hotel Booking Lite plugin <= 5.2.3 - Remote Code Execution (RCE) vulnerability CWE-94 | 9.1 | Critical | 2025-12-18 |
| CVE-2023-5991 | Hotel Booking Lite < 4.8.5 - Unauthenticated Arbitrary File Download & Deletion | 9.8AI | CriticalAI | 2023-12-26 |
| CVE-2023-28498 | WordPress Hotel Booking Lite Plugin <= 4.6.0 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352 | 4.3 | Medium | 2023-11-12 |
All 3 known CVE vulnerabilities affecting Hotel Booking Lite with full Chinese analysis, references, and POCs where available.