Lucene search
China National Vulnerability DatabaseCNVD-2022-19788HistoryMar 09, 2022 - 12:00 a.m.
WordPress WP Time Slots Booking Form Plugin跨站脚本漏洞
2022-03-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
0.001 Low
EPSS
Percentile
25.0%
WordPress is the Wordpress Foundation’s suite of blogging platforms developed using the PHP language. A cross-site scripting vulnerability exists in versions of the WordPress WP Time Slots Booking Form Plugin prior to 1.1.63. The vulnerability stems from the plugin’s failure to clean and escape calendar names, and can be exploited by attackers to execute client-side JavaScript code.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress wp time slots booking form plugin | lt | 1.1.63 |
Related
wpvulndb
wpvulndb
WP Time Slots Booking Form < 1.1.63 - Admin+ Stored Cross-Site Scripting
2022-02-02 00:00:00
patchstack
patchstack
cvelist
cvelist
wpexploit
wpexploit
WP Time Slots Booking Form < 1.1.63 - Admin+ Stored Cross-Site Scripting
2022-02-02 00:00:00
nvd
nvd
CVE-2022-0389
2022-03-07 09:15:09
prion
prion
Cross site scripting
2022-03-07 09:15:00
cve
cve
CVE-2022-0389
2022-03-07 09:15:09