CVE-2025-6234 — CVSS 6.1 (medium): The Hostel WordPress plugin before 1.1.5.8 does not sanitise and escape a parameter before outputting it back in the page, leading to a…
CVE-2024-3753 — CVSS 5.9 (medium): The Hostel WordPress plugin before 1.1.5.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a…
CVE-2023-0545 — CVSS 4.8 (medium): The Hostel WordPress plugin before 1.1.5.2 does not sanitise and escape some of its settings, which could allow high privilege users such…
CVE-2025-6236 — CVSS 4.8 (medium): The Hostel WordPress plugin before 1.1.5.9 does not sanitise and escape some of its settings, which could allow high privilege users such…