WordPress Plugin Vulnerabilities

WP Hotel Booking < 2.1.3 - Authenticated (Subscriber+) Arbitrary File Upload

Description

The WP Hotel Booking plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the update_review() function in all versions up to, and including, 2.1.2. This makes it possible for authenticated attackers, with subscriber-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.

Affects Plugins

Plugin icon
wp-hotel-booking
Fixed in 2.1.3

References

CVE
CVE-2024-7855
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/784593ec-b635-4f59-9afb-ab506f786d21

Miscellaneous

Original Researcher
Truoc Phan
Verified
No
WPVDB ID
9780f90d-f450-48cb-b3b8-548a6ee8e986

Timeline

Publicly Published
2024-10-01 (about 1 year ago)
Added
2024-10-01 (about 1 year ago)
Last Updated
2024-10-02 (about 1 year ago)

Other

Published
Title
Published
2025-04-03
Title
Woffice Core < 5.4.22 - Authenticated (Subscriber+) Arbitrary File Upload
Published
2024-11-27
Title
File Manager Pro – Filester < 1.8.7- Authenticated (Subscriber+) Arbitrary File Upload
Published
2025-05-20
Title
Hospital Management System <= 47.0(20-11-2023) - Authenticated (Subscriber+) Arbitrary File Upload
Published
2014-08-01
Title
Annonces 1.2.0.1 - admin/theme.php File Upload PHP Code Execution
Published
2014-08-01
Title
Flip Book 1.0 - Shell Upload