3 matches found
WordPress Solidres – Hotel booking plugin Plugin <= 0.9.4 is vulnerable to Cross Site Scripting (XSS)
Software Solidres – Hotel booking plugin Type Plugin Vulnerable versions = 0.9.4 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-1377 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 776613df19b3 Credits Erwan LR...
CVE-2023-1377
creationtimestamp| type| source ---|---|--- 2023-04-03 18:24:50+00:00| seen| https://t.me/cibsecurity/61324 2023-04-03 19:37:17+00:00| seen| Telegram/937MQXK2CNMEA7BfjbNwE-1WcKoOw9uamzXE2Cuxgrwyw...
CVE-2023-1377
CVE-2023-1377 affects the Solidres WordPress plugin, specifically versions up to 0.9.4. The vulnerability is a Reflected Cross-Site Scripting flaw caused by the plugin not sanitising and escaping numerous parameters before outputting them on pages, which could be exploited against high-privilege ...