Lucene search
MustLivePATCHSTACK:7BFA4FDE50973D20B93E3A2F5ED5AAE3HistoryJan 13, 2015 - 12:00 a.m.
WordPress JS Multi Hotel Plugin <= 2.2.1 - XSS
2015-01-1300:00:00
MustLive
patchstack.com
5
0.003 Low
EPSS
Percentile
66.0%
Because of this cross site scripting vulnerability in includes/delete_img.php, the attackers can inject arbitrary web script or HTML via the “path” parameter.
Solution
Update the plugin.
| CPE | Name | Operator | Version |
|---|---|---|---|
| js multi hotel | le | 2.2.1 |
Related
wpvulndb
wpvulndb
JS MultiHotel 2.2.1 - includes/delete_img.php path Parameter Reflected XSS
2014-08-01 10:59:07
prion
prion
Cross site scripting
2015-01-13 11:59:00
cve
cve
CVE-2014-100008
2015-01-13 11:59:07
nvd
nvd
CVE-2014-100008
2015-01-13 11:59:07
cvelist
cvelist
CVE-2014-100008
2015-01-13 11:00:00