cleantalk
Vulnerabilities and Security Researches

Oganro Travel Portal Search Widget for HotelBeds APITUDE API, CVE-2025-49966

CVE, Research URL

CVE-2025-49966

Home page URL

Security reports for Oganro Travel Portal Search Widget for HotelBeds APITUDE API

Application

Oganro Travel Portal Search Widget for HotelBeds APITUDE API

Published on
Jun 20, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Oganro Oganro Travel Portal Search Widget for HotelBeds APITUDE API allows Cross Site Request Forgery. This issue affects Oganro Travel Portal Search Widget for HotelBeds APITUDE API: from n/a through 1.0.
Affected versions
Min -, max 1.0.
Status
vulnerable
Previous vulnerability researches
Hoo Addons for Elementor (CVE-2024-51590) , Nov 04, 2024
New vulnerability
WP Customer Area (CVE-2025-49982) , Jun 22, 2025
Polls CP (CVE-2025-50025) , Jun 22, 2025
ContentStudio (CVE-2025-49990) , Jun 22, 2025
ANON::form embedded secure form (CVE-2025-52733) , Jun 22, 2025
Oganro Travel Portal Search Widget for HotelBeds APITUDE API (CVE-2025-49966) , Jun 22, 2025