EPSS
Percentile
69.2%
Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by ThelastVvV in WordPress Car Rental System premium plugin (versions <= 1.3).
No patched version is available. Deactivate and delete.
codecanyon.net/item/car-rental-system-wordpress-plugin/4239755
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15535
packetstormsecurity.com/files/157118/WordPress-Car-Rental-System-1.3-Cross-Site-Scripting.html