Vulners
Lucene search
π Reservit Hotel Cross Site Scripting
ποΈΒ 07 Apr 2025Β 00:00:00Reported byΒ Ilteris Kaan PehlivanTypeΒ 
Β packetstormπΒ packetstorm.newsπΒ 223Β Views
| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
 | CVE-2024-9458 | 7 Mar 202510:35 | β | circl |
 | WordPress plugin Reservit Hotel θ·¨η«θζ¬ζΌζ΄ | 7 Mar 202500:00 | β | cnnvd |
 | CVE-2024-9458 | 7 Mar 202509:38 | β | cve |
 | CVE-2024-9458 Reservit Hotel < 3.0 - Admin+ Stored XSS | 7 Mar 202509:38 | β | cvelist |
 | Reservit Hotel 2.1 - Stored Cross-Site Scripting (XSS) | 6 Apr 202500:00 | β | exploitdb |
 | EUVD-2025-6246 | 3 Oct 202520:07 | β | euvd |
 | CVE-2024-9458 | 7 Mar 202510:15 | β | nvd |
 | WordPress Reservit Hotel plugin < 3.0 - Admin+ Stored XSS vulnerability | 7 Mar 202510:32 | β | patchstack |
 | PT-2025-10080 Β· WordPress Β· Reservit Hotel Wordpress Plugin | 7 Mar 202500:00 | β | ptsecurity |
 | CVE-2024-9458 | 9 Mar 202510:39 | β | redhatcve |
10
# Exploit Title: Reservit Hotel < 3.0 - Admin+ Stored XSS
# Date: 2024-10-01
# Exploit Author: Ilteris Kaan Pehlivan
# Vendor Homepage: https://wpscan.com/plugin/reservit-hotel/
# Version: Reservit Hotel 2.1
# Tested on: Windows, WordPress, Reservit Hotel < 3.0
# CVE : CVE-2024-9458
The plugin does not sanitise and escape some of its settings, which could
allow high privilege users such as admin to perform Stored Cross-Site
Scripting attacks even when the unfiltered_html capability is disallowed
(for example in multisite setup).
1. Install and activate Reservit Hotel plugin.
2. Go to Reservit hotel > Content
3. Add the following payload to the Button text > French field sane save: "
style=animation-name:rotation onanimationstart=alert(/XSS/)//
4. The XSS will trigger upon saving and when any user will access the
content dashboard again
References:
https://wpscan.com/vulnerability/1157d6ae-af8b-4508-97e9-b9e86f612550/
https://www.cve.org/CVERecord?id=CVE-2024-9458Data
Build on a solid foundation withΒ Vulners data
WeΒ provide theΒ essential building blocks forΒ cybersecurity solutions withΒ comprehensive, structured, andΒ constantly updated vulnerability andΒ exploits data
Api
Power your application withΒ Vulners API
The Vulners REST API offers reliable, high-performance access toΒ vulnerabilityΒ intelligence, withΒ 99.9%Β SLAΒ uptime andΒ CDN-backed data delivery forΒ seamlessΒ global access
App
Assess and manage vulnerabilities withΒ VulnersΒ tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
07 Apr 2025 00:00Current
6.2Medium risk
Vulners AI Score6.2
CVSS 3.14.8
EPSS0.01664
SSVC