Skip to main content

Hotels Online Booking Engine

1 CVEs product

Monthly

CVE-2023-0768 HIGH POC This Week

The Avirato hotels online booking engine WordPress plugin through 5.0.5 does not validate and escape some of its shortcode attributes before using them in SQL statement/s, which could allow any. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Hotels Online Booking Engine
NVD WPScan
CVSS 3.1
8.8
EPSS
0.9%
EPSS 1% CVSS 8.8
HIGH POC This Week

The Avirato hotels online booking engine WordPress plugin through 5.0.5 does not validate and escape some of its shortcode attributes before using them in SQL statement/s, which could allow any. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Hotels Online Booking Engine
NVD WPScan

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy