Vulnerabilities > CVE-2021-36852 - Unspecified vulnerability in Thimpress WP Hotel Booking
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Cross-Site Request Forgery (CSRF) vulnerability in ThimPress WP Hotel Booking plugin <= 1.10.5 at WordPress.
Vulnerable Configurations
References
- https://patchstack.com/database/vulnerability/wp-hotel-booking/wordpress-wp-hotel-booking-plugin-1-10-5-cross-site-request-forgery-csrf-vulnerability
- https://patchstack.com/database/vulnerability/wp-hotel-booking/wordpress-wp-hotel-booking-plugin-1-10-5-cross-site-request-forgery-csrf-vulnerability
- https://wordpress.org/plugins/wp-hotel-booking/#developers
- https://wordpress.org/plugins/wp-hotel-booking/#developers