3 matches found
CVE-2023-1374
creationtimestamp| type| source ---|---|--- 2023-03-13 15:53:21+00:00| seen| https://t.me/cibsecurity/59887...
CVE-2023-1374
CVE-2023-1374 affects Solidres – Hotel booking plugin for WordPress. It is a stored XSS via the currency_name parameter in versions up to 0.9.4 caused by insufficient input sanitization and output escaping. Exploitation requires authenticated admin privileges; injected scripts execute when users ...
WordPress Solidres – Hotel booking plugin Plugin <= 0.9.4 is vulnerable to Cross Site Scripting (XSS)
Software Solidres – Hotel booking plugin Type Plugin Vulnerable versions = 0.9.4 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-1374 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 2295c3bbe77d Credits Daniel...