cleantalk
Vulnerabilities and Security Researches

Flights & Hotels Booking WP Plugin, CVE-2025-62916

CVE, Research URL

CVE-2025-62916

Home page URL

Security reports for Flights & Hotels Booking WP Plugin

Application

Flights & Hotels Booking WP Plugin

Published on
Oct 27, 2025
Research Description
Missing Authorization vulnerability in adivaha® Flights &amp; Hotels Booking WP Plugin adiaha-hotel allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Flights &amp; Hotels Booking WP Plugin: from n/a through <= 3.1.
Affected versions
max 3.1.
Status
vulnerable
Previous vulnerability researches
Video Lessons Manager &#8211; WordPress LMS Plugin (CVE-2021-24713) , Jun 06, 2024
Video Lessons Manager &#8211; WordPress LMS Plugin (CVE-2024-11202) , Nov 27, 2024
Video Lessons Manager &#8211; WordPress LMS Plugin (CVE-2025-24758) , Feb 16, 2025
New vulnerability
LinkedIn Resume (CVE-2025-12402) , Nov 11, 2025
EM Beer Manager (CVE-2025-11724) , Nov 11, 2025
WP Delicious &#8211; Best WordPress Recipes Plugin (formerly Delicious Recipes) (CVE-2025-11755) , Nov 11, 2025
Directorist &#8211; WordPress Business Directory Plugin with Classified Ads Listings (CVE-2025-10488) , Nov 11, 2025
Tooltipy (tooltips for WP) (CVE-2025-62917) , Nov 11, 2025