Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

VikBooking Hotel Booking Engine & PMS — Vulnerabilities & Security Advisories 15

All 15 CVE vulnerabilities found in VikBooking Hotel Booking Engine & PMS, with AI-generated Chinese analysis, references, and POCs.

Vendor: Unknown

CVE IDTitleCVSSSeverityPublished
CVE-2025-49918 WordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.8.2 - Sensitive Data Exposure vulnerability CWE-201 5.9 Medium2025-12-18
CVE-2025-5803 WordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.8.2 - Broken Access Control vulnerability CWE-862 5.3 Medium2025-11-06
CVE-2024-13616 VikBooking < 1.7.2 - Admin+ Stored XSS 4.8AIMediumAI2025-05-15
CVE-2025-22670 WordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.7.2 - CSRF to Settings Change vulnerability CWE-862 6.5 Medium2025-03-27
CVE-2024-11641 VikBooking Hotel Booking Engine & PMS <= 1.7.2 - Cross-Site Request Forgery to Authenticated (Subscriber+) Arbitrary File Upload CWE-352 8.8 High2025-01-26
CVE-2024-2441 VikBooking < 1.6.8 - Insecure Direct Object References 4.3 -2024-05-10
CVE-2024-2749 VikBooking < 1.6.8 - Broken Access Control 6.5 -2024-05-10
CVE-2024-32563 WordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.6.7 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 7.1 High2024-04-18
CVE-2023-32501 WordPress VikBooking Hotel Booking Engine & PMS Plugin <= 1.6.1 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352 8.8 -2023-11-09
CVE-2023-25707 WordPress VikBooking Hotel Booking Engine & PMS Plugin <= 1.5.12 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352 6.3 Medium2023-05-23
CVE-2023-24396 WordPress VikBooking Hotel Booking Engine & PMS Plugin <= 1.5.11 is vulnerable to Cross Site Scripting (XSS) CWE-79 5.9 Medium2023-04-06
CVE-2022-1528 VikBooking < 1.5.9 - Reflected Cross-Site Scripting CWE-79 6.1 -2022-05-30
CVE-2022-1409 VikBooking Hotel Booking Engine & PMS < 1.5.8 - Admin+ PHP File Upload CWE-434 7.2 -2022-05-16
CVE-2022-1408 VikBooking Hotel Booking Engine & PMS < 1.5.8 - Admin+ Stored Cross-Site Scripting CWE-79 4.8 -2022-05-16
CVE-2022-1407 VikBooking Hotel Booking Engine & PMS < 1.5.7 - Stored Cross-Site Scripting via CSRF CWE-352 6.5 -2022-05-16

All 15 known CVE vulnerabilities affecting VikBooking Hotel Booking Engine & PMS with full Chinese analysis, references, and POCs where available.