CVE 8.8 HIGH

WordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.8.2 - Broken Access Control vulnerability_CVE-2025-5803

November 10, 2025 invoker category_cve
8.8 / 10
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

Missing Authorization vulnerability in e4jvikwp VikBooking Hotel Booking Engine & PMS vikbooking.This issue affects VikBooking Hotel Booking Engine & PMS: from n/a through <= 1.8.2.

AI Analysis

Broken Access Control vulnerability in VikBooking Hotel Booking Engine & PMS plugin

Basic Information

ID CVE-2025-5803
Source Patchstack
Published Nov 6, 2025 at 15:54
Modified Nov 10, 2025 at 19:47

Affected Product

Vendor e4jvikwp
Product VikBooking Hotel Booking Engine & PMS
Version n/a
Affected Versions e4jvikwp VikBooking Hotel Booking Engine & PMS n/a

CWE Classification

CWE-862

AI Assessment

AI Score 8.8 / 10
AI Severity High
Vendor e4jvikwp
Product VikBooking Hotel Booking Engine & PMS
Version <= 1.8.2

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.