CVE-2024-13447

Medium CVSS: 4.3

The WP Hotel Booking plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the hotel_booking_load_order_user AJAX action in all versions up to, and including, 2.1.6. This makes it possible for authenticated attackers, with Subscriber-level access and above, to retrieve a list of registered user emails.

Vendor

Thimpress

Product

Wp Hotel Booking

CWE

CWE-862

Yayın Tarihi

2025-01-22 11:15:07

Güncelleme

2025-01-24 20:53:40

Source Identifier

security@wordfence.com

KEV Date Added

Kategoriler

CWE-862 Wp Hotel Booking MEDIUM Thimpress 2025

Referanslar

https://plugins.trac.wordpress.org/browser/wp-hotel-booking/trunk/assets/js/admin/admin.hotel-booking.js#L621 https://plugins.trac.wordpress.org/changeset/3225879/ https://wordpress.org/plugins/wp-hotel-booking/#developers https://www.wordfence.com/threat-intel/vulnerabilities/id/bc883e7e-af82-47e1-a0c0-122e6abd6b52?source=cve

Benzer Kayıtlar

High

CVE-2025-60227

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ThimPress WP Pipes wp-pi…

High

CVE-2025-28977

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThimPress WP Pipes…

High

CVE-2025-28979

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in…

Critical

CVE-2025-28982

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ThimPress WP Pipes…

High

CVE-2025-48267

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ThimPress WP Pipes allow…

Medium

CVE-2024-13127

The LearnPress WordPress plugin before 4.2.7.5.1 does not sanitise and escape some of its settings, which could allow h…