Nicdark

Hotel Booking

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2025-63001

  • EPSS 0.18%
  • Veröffentlicht 31.12.2025 14:56:30
  • Zuletzt bearbeitet 23.04.2026 15:34:56

Missing Authorization vulnerability in nicdark Hotel Booking nd-booking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Hotel Booking: from n/a through <= 3.8.

7.5

CVE-2025-53259

  • EPSS 0.48%
  • Veröffentlicht 27.06.2025 13:21:06
  • Zuletzt bearbeitet 23.04.2026 15:32:22

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in nicdark Hotel Booking nd-booking allows PHP Local File Inclusion.This issue affects Hotel Booking: from n/a through <= 3.7.

7.5

CVE-2025-47498

  • EPSS 0.61%
  • Veröffentlicht 07.05.2025 14:19:55
  • Zuletzt bearbeitet 23.04.2026 15:30:20

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in nicdark Hotel Booking nd-booking allows PHP Local File Inclusion.This issue affects Hotel Booking: from n/a through <= 3.6.

8.1

CVE-2025-39526

  • EPSS 0.54%
  • Veröffentlicht 17.04.2025 15:46:55
  • Zuletzt bearbeitet 23.04.2026 15:29:43

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in nicdark Hotel Booking nd-booking allows PHP Local File Inclusion.This issue affects Hotel Booking: from n/a through <= 3.6.

5.4

CVE-2022-29443

  • EPSS 0.48%
  • Veröffentlicht 15.06.2022 19:15:10
  • Zuletzt bearbeitet 21.11.2024 06:59:05

Multiple Authenticated (contributor or higher user role) Stored Cross-Site Scripting (XSS) vulnerabilities in Nicdark's Hotel Booking plugin <= 3.0 at WordPress.