Medium severity5.3NVD Advisory· Published Apr 19, 2022· Updated Jun 17, 2026
CVE-2022-27863
CVE-2022-27863
Description
Sensitive Information Exposure in E4J s.r.l. VikBooking Hotel Booking Engine & PMS plugin <= 1.5.3 on WordPress allows attackers to get the booking data by guessing / brute-forcing easy predictable booking IDs via search POST requests.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3<=1.5.3+ 1 more
- (no CPE)range: <=1.5.3
- (no CPE)range: <= 1.5.3
- Range: <=1.5.3
Patches
Vulnerability mechanics
References
2- patchstack.com/database/vulnerability/vikbooking/wordpress-vikbooking-hotel-booking-engine-pms-plugin-1-5-3-sensitive-data-exposure-vulnerabilitynvdRelease NotesThird Party Advisory
- wordpress.org/plugins/vikbooking/nvdVendor Advisory
News mentions
0No linked articles in our index yet.