EPSS
Percentile
69.2%
Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by ThelastVvV in WordPress Online Hotel Booking System Pro premium plugin (versions <= 1.1).
Plugin closed. Deactivate and delete.
codecanyon.net/item/online-hotel-booking-system-pro-wordpress-plugin/9338914
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15536
packetstormsecurity.com/files/157116/WordPress-Hotel-Booking-System-Pro-1.1-Cross-Site-Scripting.html