Update the WordPress VikBooking Hotel Booking Engine & PMS plugin to the latest available version (at least 1.5.8).
Gabriel3476 discovered and reported this Other Vulnerability Type vulnerability in WordPress VikBooking Hotel Booking Engine & PMS Plugin. This vulnerability has been fixed in version 1.5.8.
Cross Site Scripting (XSS)
Reflected CrossSite Scripting (XSS) vulnerability
Arbitrary File Upload leading to RCE
Sensitive Data Exposure vulnerability