CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-47448 – WordPress WP Hotel Booking <= 2.1.9 - Cross Site Request Forgery (CSRF) Vulnerability
https://notcve.org/view.php?id=CVE-2025-47448
07 May 2025 — Cross-Site Request Forgery (CSRF) vulnerability in ThimPress WP Hotel Booking allows Cross Site Request Forgery. This issue affects WP Hotel Booking: from n/a through 2.1.9. The WP Hotel Booking plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.1.9. This is due to missing or incorrect nonce validation on the save() function. This makes it possible for unauthenticated attackers to update plugin settings via a forged request granted they can trick a site admi... • https://patchstack.com/database/wordpress/plugin/wp-hotel-booking/vulnerability/wordpress-wp-hotel-booking-2-1-9-cross-site-request-forgery-csrf-vulnerability?_s_id=cve • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-13447 – WP Hotel Booking <= 2.1.6 - Missing Authorization to Authenticated (Subscriber+) User Email Retrieval
https://notcve.org/view.php?id=CVE-2024-13447
21 Jan 2025 — The WP Hotel Booking plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the hotel_booking_load_order_user AJAX action in all versions up to, and including, 2.1.6. This makes it possible for authenticated attackers, with Subscriber-level access and above, to retrieve a list of registered user emails. • https://plugins.trac.wordpress.org/browser/wp-hotel-booking/trunk/assets/js/admin/admin.hotel-booking.js#L621 • CWE-862: Missing Authorization •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-12370 – WP Hotel Booking <= 2.1.5 - Missing Authorization
https://notcve.org/view.php?id=CVE-2024-12370
16 Jan 2025 — The WP Hotel Booking plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check when adding rooms in all versions up to, and including, 2.1.5. This makes it possible for unauthenticated attackers to add rooms with custom prices. El complemento WP Hotel Booking para WordPress es vulnerable a la modificación no autorizada de datos debido a una verificación de capacidad faltante al agregar habitaciones en todas las versiones hasta la 2.1.5 incluida. Esto hace posi... • https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3210798%40wp-hotel-booking%2Ftags%2F2.1.5&new=3214765%40wp-hotel-booking%2Ftags%2F2.1.6 • CWE-284: Improper Access Control •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-51582 – WordPress WP Hotel Booking plugin <= 2.1.4 - Local File Inclusion vulnerability
https://notcve.org/view.php?id=CVE-2024-51582
31 Oct 2024 — Path Traversal: '.../...//' vulnerability in ThimPress WP Hotel Booking allows PHP Local File Inclusion.This issue affects WP Hotel Booking: from n/a through 2.1.4. The WP Hotel Booking plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 2.1.7. This makes it possible for authenticated attackers, with contributor-level access and above, to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypa... • https://patchstack.com/database/vulnerability/wp-hotel-booking/wordpress-wp-hotel-booking-plugin-2-1-4-local-file-inclusion-vulnerability?_s_id=cve • CWE-35: Path Traversal: '.../...//' CWE-98: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') •
CVSS: 9.0EPSS: 8%CPEs: 1EXPL: 0CVE-2024-7855 – WP Hotel Booking <= 2.1.2 - Authenticated (Subscriber+) Arbitrary File Upload
https://notcve.org/view.php?id=CVE-2024-7855
01 Oct 2024 — The WP Hotel Booking plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the update_review() function in all versions up to, and including, 2.1.2. This makes it possible for authenticated attackers, with subscriber-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible. • https://plugins.trac.wordpress.org/browser/wp-hotel-booking/trunk/includes/class-wphb-comments.php#L150 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 10.0EPSS: 25%CPEs: 1EXPL: 1CVE-2024-3605 – WP Hotel Booking <= 2.1.0 - Unauthenticated SQL Injection
https://notcve.org/view.php?id=CVE-2024-3605
19 Jun 2024 — The WP Hotel Booking plugin for WordPress is vulnerable to SQL Injection via the 'room_type' parameter of the /wphb/v1/rooms/search-rooms REST API endpoint in all versions up to, and including, 2.1.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. El co... • https://github.com/RandomRobbieBF/CVE-2024-3605 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30508 – WordPress WP Hotel Booking plugin <= 2.0.9.2 - Broken Access Control vulnerability
https://notcve.org/view.php?id=CVE-2024-30508
28 Mar 2024 — Missing Authorization vulnerability in ThimPress WP Hotel Booking.This issue affects WP Hotel Booking: from n/a through 2.0.9.2. Vulnerabilidad de autorización faltante en WP Hotel Booking de Thimpress. Este problema afecta a WP Hotel Booking: desde n/a hasta 2.0.9.2. The WP Hotel Booking plugin for WordPress is vulnerable to unauthorized access due to a missing capability check in versions up to, and including, 2.0.9.2. This makes it possible for unauthenticated attackers to perform an unauthorized action. • https://patchstack.com/database/vulnerability/wp-hotel-booking/wordpress-wp-hotel-booking-plugin-2-0-9-2-broken-access-control-vulnerability?_s_id=cve • CWE-862: Missing Authorization •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-5799 – WP Hotel Booking < 2.0.9 - Contributor+ Arbitrary Post Deletion
https://notcve.org/view.php?id=CVE-2023-5799
26 Oct 2023 — The WP Hotel Booking WordPress plugin before 2.0.8 does not have proper authorisation when deleting a package, allowing Contributor and above roles to delete posts that do no belong to them El complemento WP Hotel Booking de WordPress anterior a 2.0.8 no tiene la autorización adecuada al eliminar un paquete, lo que permite que los roles Colaborador y superiores eliminen publicaciones que no les pertenecen. The WP Hotel Booking plugin for WordPress is vulnerable to unauthorized modification of data due to in... • https://wpscan.com/vulnerability/3061f85e-a70e-49e5-bccf-ae9240f51178 • CWE-863: Incorrect Authorization •
CVSS: 10.0EPSS: 18%CPEs: 1EXPL: 1CVE-2023-5652 – WP Hotel Booking < 2.0.8 - Unauthenticated SQLi
https://notcve.org/view.php?id=CVE-2023-5652
26 Oct 2023 — The WP Hotel Booking WordPress plugin before 2.0.8 does not have authorisation and CSRF checks, as well as does not escape user input before using it in a SQL statement of a function hooked to admin_init, allowing unauthenticated users to perform SQL injections El complemento WP Hotel Booking de WordPress anterior a 2.0.8 no tiene autorización ni controles CSRF, y tampoco escapa a la entrada del usuario antes de usarlo en una declaración SQL de una función vinculada a admin_init, lo que permite a usuarios n... • https://wpscan.com/vulnerability/8ea46b9a-5239-476b-949d-49546371eac1 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-5651 – WP Hotel Booking < 2.0.8 - Subscriber+ Arbitrary Post Deletion
https://notcve.org/view.php?id=CVE-2023-5651
20 Oct 2023 — The WP Hotel Booking WordPress plugin before 2.0.8 does not have authorisation and CSRF checks, as well as does not ensure that the package to be deleted is a package, allowing any authenticated users, such as subscriber to delete arbitrary posts El complemento WP Hotel Booking de WordPress anterior a 2.0.8 no tiene autorización ni controles CSRF, además no garantiza que el paquete que se eliminará sea un paquete, lo que permite a cualquier usuario autenticado, como un suscriptor, eliminar publicaciones arb... • https://wpscan.com/vulnerability/a365c050-96ae-4266-aa87-850ee259ee2c • CWE-732: Incorrect Permission Assignment for Critical Resource CWE-862: Missing Authorization •