CVE-2024-2749 | VikBooking Hotel Booking Engine & PMS Plugin up to 1.6.7 on WordPress Setting access control

Posted by Angelo Barbosa | May 10, 2024 | CVE

A vulnerability has been found in VikBooking Hotel Booking Engine & PMS Plugin up to 1.6.7 on WordPress and classified as critical. This vulnerability affects unknown code of the component Setting Handler. The manipulation leads to improper access controls.

This vulnerability was named CVE-2024-2749. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-2749 | VikBooking Hotel Booking Engine & PMS Plugin up to 1.6.7 on WordPress Setting access control

Related Posts

CVE-2024-3318 | SailPoint Identity Security Cloud DelimitedFileConnector Cloud Connector path traversal

CVE-2024-25221 | Task Manager App 1.0 /TaskManager/Tasks.php Note Section cross site scripting

CVE-2023-45842 | Buildroot 2023.08.1/622698d7847 code download (TALOS-2023-1844)

CVE-2024-29059 | Microsoft .NET Framework prior 4.8.4682.0/4.8.9206.0 information disclosure