Lucene search
China National Vulnerability DatabaseCNVD-2021-99873HistoryDec 09, 2021 - 12:00 a.m.
WordPress Online Booking and Scheduling Plugin Cross-Site Scripting Vulnerability
2021-12-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
wordpress
online booking
cross-site scripting
vulnerability
php
mysql
data validation
javascript
EPSS
0.001
Percentile
24.8%
WordPress is the Wordpress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress Online Booking and Scheduling plugin has a cross-site scripting vulnerability in versions prior to 20.3.1, which stems from a lack of data validation filtering of user-supplied data and output. An attacker could use this vulnerability to execute JavaScript code on the client side.
Related
wpvulndb
wpvulndb
Bookly < 20.3.1 - Staff Member Stored Cross-Site Scripting
2021-11-08 00:00:00
nvd
nvd
CVE-2021-24930
2021-12-06 16:15:08
cvelist
cvelist
CVE-2021-24930 Bookly < 20.3.1 - Staff Member Stored Cross-Site Scripting
2021-12-06 15:55:32
cve
cve
CVE-2021-24930
2021-12-06 16:15:08
wpexploit
wpexploit
Bookly < 20.3.1 - Staff Member Stored Cross-Site Scripting
2021-11-08 00:00:00
prion
prion
Cross site scripting
2021-12-06 16:15:00
patchstack
patchstack