CVE Catalog

CVE-2026-57347

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Summary

The Hotel Booking Lite plugin version 6.0.3 and earlier exposes sensitive subscriber data. This vulnerability allows unauthorized users to access confidential information stored in the system.

Risk Assessment

The risk involves potential leakage of subscriber personal data, which may violate data protection regulations (e.g., GDPR) and harm the organization's reputation.

Recommendation

It is recommended to immediately update the Hotel Booking Lite plugin to the latest available version that fixes this vulnerability.

Original NVD description (English source)

Subscriber Sensitive Data Exposure in Hotel Booking Lite <= 6.0.3 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS