Reflected Cross-Site Scripting (XSS) vulnerability discovered by Bruno Halltari in WordPress VikBooking Hotel Booking Engine & PMS plugin (versions <= 1.5.8).
Update the WordPress VikBooking Hotel Booking Engine & PMS plugin to the latest available version (at least 1.5.9).