CVE-2026-15094 | thimpress WP Hotel Booking Plugin up to 2.3.2 on WordPress check_in_date cross site scripting
A vulnerability labeled as problematic has been found in thimpress WP Hotel Booking Plugin up to 2.3.2 on WordPress. The impacted element is an unknown function. Such manipulation of the argument check_in_date leads to cross site scripting.
This vulnerability is referenced as CVE-2026-15094. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More