exploitDog

CVE-2025-49966

Опубликовано: 20 июн. 2025

Источник: nvd

CVSS3: 4.3

EPSS Низкий

Описание

Cross-Site Request Forgery (CSRF) vulnerability in Oganro Oganro Travel Portal Search Widget for HotelBeds APITUDE API allows Cross Site Request Forgery. This issue affects Oganro Travel Portal Search Widget for HotelBeds APITUDE API: from n/a through 1.0.

Ссылки

https://patchstack.com/database/wordpress/plugin/oganro-travel-portal-search-widget-for-hotelbeds-apitude-api/vulnerability/wordpress-oganro-travel-portal-search-widget-for-hotelbeds-apitude-api-plugin-1-0-cross-site-request-forgery-csrf-vulnerability?_s_id=cve

EPSS

Процентиль: 2%

0.00015

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-352

Связанные уязвимости

GHSA-8v84-mv9p-rj4g

CVSS3: 4.3

github

8 месяцев назад

Cross-Site Request Forgery (CSRF) vulnerability in Oganro Oganro Travel Portal Search Widget for HotelBeds APITUDE API allows Cross Site Request Forgery. This issue affects Oganro Travel Portal Search Widget for HotelBeds APITUDE API: from n/a through 1.0.

EPSS

Процентиль: 2%

0.00015

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-352