CVE-2023-5799
N/A
N/A
Summary
The WP Hotel Booking WordPress plugin before 2.0.8 does not have proper authorisation when deleting a package, allowing Contributor and above roles to delete posts that do no belong to them
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Unknown | WP Hotel Booking | 0 < 2.0.8 | affected |
Weaknesses
- CWE-863 Incorrect Authorization
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.