CVE-2025-49904 | Booking and Rental Manager Plugin up to 2.5.3 on WordPress cross site scripting

November 4, 2025 Yanac

A vulnerability classified as problematic was found in Booking and Rental Manager Plugin up to 2.5.3 on WordPress. Affected by this issue is some unknown functionality. The manipulation results in cross site scripting.

This vulnerability is reported as CVE-2025-49904. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-49905 | Range Slider Addon for Gravity Forms Plugin up to 1.1.6 on WordPress cross site scripting
CVE-2025-12045 | Orbit Fox Companion Plugin up to 3.0.2 on WordPress Name cross site scripting