cleantalk
Vulnerabilities and Security Researches

Hotel Booking, CVE-2025-53259

CVE, Research URL

CVE-2025-53259

Home page URL

Security reports for Hotel Booking

Application

Hotel Booking

Published on
Jun 27, 2025
Research Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in nicdark Hotel Booking allows PHP Local File Inclusion. This issue affects Hotel Booking: from n/a through 3.7.
Affected versions
Min -, max 3.8.
Status
vulnerable
Previous vulnerability researches
Publisher Media Kit (CVE-2022-25858) , Jun 07, 2024
New vulnerability
MDJM Event Management (CVE-2025-52824) , Jul 03, 2025
OnionBuzz (CVE-2025-53312) , Jul 03, 2025
Hide Admin Bar From Front End (CVE-2025-53267) , Jul 03, 2025
WP Visual Sitemap (CVE-2025-53290) , Jul 03, 2025
ElementsKit Elementor addons (CVE-2025-4479) , Jul 03, 2025