The wp-hotel-booking plugin up to and including 1.10.2 for WordPress allows remote malicious users to execute arbitrary code because of an unserialize operation on the thimpress_hotel_booking_1 cookie in load in includes/class-wphb-sessions.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
thimpress wp hotel booking |