Vulnerabilities

CVE-2025-60168

by Fred · 22/10/2025

Cross-Site Request Forgery (CSRF) vulnerability in integrationshotelrunner HotelRunner Booking Widget hotelrunner allows Stored XSS.This issue affects HotelRunner Booking Widget: from n/a through <= 1.6. More information : https://vdp.patchstack.com/database/Wordpress/Plugin/hotelrunner/vulnerability/wordpress-hotelrunner-booking-widget-plugin-1-6-cross-site-request-forgery-csrf-vulnerability

Similar

Tags: Cybersecurity Alert