Hostel

Vulnerabilities 13Slug hostelLatest version 1.1.8WordPress.org →

Minimum safe version

1.1.7

Update to 1.1.7 or later to address 13 fixable vulnerabilities

Latest available1.1.8 ✓

Medium 4.8

2025-07-10< 1.1.5.9

Hostel <= 1.1.5.8 - Authenticated (Admin+) Stored Cross-Site Scripting

EUVD Wordfence CVE

Medium 6.1

2025-07-10< 1.1.5.8

Hostel <= 1.1.5.7 - Reflected Cross-Site Scripting

EUVD Wordfence CVE

Medium 6.1

2026-04-18< 1.1.7

CVE-2026-1838

CVE Wordfence

High 7.1

2025-12-18< 1.1.6

CVE-2025-66119

CVE Wordfence

High 7.6

2025-04-16< 1.1.5.7

CVE-2025-39566

CVE EUVD Wordfence

High 7.1

2025-04-01< 1.1.5.5

CVE-2025-30848

CVE EUVD Patchstack Wordfence

High 7.1

2025-03-28< 1.1.5.6

CVE-2025-31102

CVE Wordfence EUVD

Medium 5.9

2024-07-15< 1.1.5.3

WordPress Hostel Plugin < 1.1.5.3 is vulnerable to Cross Site Scripting (XSS)

Patchstack CVE Wordfence

Medium 4.3

2024-05-09< 1.1.5.4

CVE-2024-4314

CVE Wordfence Patchstack

Medium 4.8

2023-06-05< 1.1.5.2

CVE-2023-0545

CVE Wordfence WPScan

Medium 5.9

2025-12-24< 1.1.5.2

CVE-2023-32120

CVE Patchstack Wordfence

N/A

2019-05-27< 1.1.4

WordPress Hostel plugin <= 1.1.3 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability

Patchstack

Medium 6.1

2019-05-27< 1.1.4

CVE-2019-12345

CVE Wordfence WPScan