WP Hotel Booking
ThimPress
Developer
2.3.0
Latest version
8,000
Installations
No date
Last updated
Vulnerability history
0 present
15 patched
5 Mitigation rules
- Sensitive Data Exposure vulnerability<= 2.2.705/11/2025
- Cross Site Request Forgery (CSRF) vulnerability<= 2.2.805/11/2025
- Cross Site Scripting (XSS) vulnerability<= 2.2.805/11/2025
- Subscriber+ Rating Manipulation vulnerability< 2.2.318/09/2025
- Cross Site Request Forgery (CSRF) Vulnerability<= 2.1.907/05/2025
- Missing Authorization to Authenticated (Subscriber+) User Email Retrieval vulnerability<= 2.1.621/01/2025
- Missing Authorization vulnerability<= 2.1.516/01/2025
- Local File Inclusion vulnerability<= 2.2.931/10/2024
- Authenticated (Subscriber+) Arbitrary File Upload vulnerability<= 2.1.202/10/2024
- Unauthenticated SQL Injection vulnerability<= 2.1.019/06/2024
- Broken Access Control vulnerability<= 2.0.9.228/03/2024
- Unauthenticated Arbitrary Settings Update vulnerability< 2.0.123/08/2022
- Cross-Site Request Forgery (CSRF) vulnerability<= 1.10.502/08/2022
- Unauthenticated Remote Code Execution (RCE) via Arbitrary Object Deserialisation vulnerability<= 1.10.203/03/2021
- Cross-Site Request Forgery (CSRF) vulnerability<= 1.10.116/09/2020