Approved changes feed: RSS · Atom

cpe:2.3:a:nicdark:hotel_booking:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorNicdark (0b69abaf-d970-56ab-add7-7e2a3d203f43)
ProductHotel Booking (a8791788-ab08-54db-8b44-c2638c9afb35)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-63001 vulnerable 2026-06-08 07:39:17.149754 WordPress Hotel Booking plugin <= 3.8 - Broken Access Control vulnerability
MEDIUM (5.3)
Missing Authorization vulnerability in nicdark Hotel Booking nd-booking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Hotel Booking: from n/a through <= 3.8.
Published: 2025-12-31T14:56:30.381Z
Updated: 2026-04-28T16:14:08.226Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-53259 vulnerable 2026-06-08 07:31:14.324233 WordPress Hotel Booking plugin <= 3.7 - Local File Inclusion Vulnerability
HIGH (7.5)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in nicdark Hotel Booking nd-booking allows PHP Local File Inclusion.This issue affects Hotel Booking: from n/a through <= 3.7.
Published: 2025-06-27T13:21:06.917Z
Updated: 2026-04-28T16:13:22.055Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-47498 vulnerable 2026-06-08 07:27:14.473960 WordPress Hotel Booking plugin <= 3.6 - Local File Inclusion Vulnerability
HIGH (7.5)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in nicdark Hotel Booking nd-booking allows PHP Local File Inclusion.This issue affects Hotel Booking: from n/a through <= 3.6.
Published: 2025-05-07T14:19:55.784Z
Updated: 2026-04-28T16:12:42.901Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-39526 vulnerable 2026-06-08 07:23:06.703973 WordPress Hotel Booking Plugin <= 3.6 - Local File Inclusion vulnerability
HIGH (8.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in nicdark Hotel Booking nd-booking allows PHP Local File Inclusion.This issue affects Hotel Booking: from n/a through <= 3.6.
Published: 2025-04-17T15:46:55.857Z
Updated: 2026-04-28T16:12:34.103Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.