Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:37 a.m.6 views

CVE-2023-35048

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in MagePeople Team Booking and Rental Manager for Bike plugin = 1.2.1 versions...

5.9CVSS5.7AI score0.00442EPSS
Exploits1
Circl
Circl
added 2023/06/23 4:46 p.m.6 views

CVE-2023-35048

creationtimestamp| type| source ---|---|--- 2023-06-23 16:46:51+00:00| seen| https://t.me/cibsecurity/65459...

5.9CVSS6.3AI score0.00442EPSS
Exploits1References1
CVE
CVE
added 2023/06/23 11:50 a.m.43 views

CVE-2023-35048

CVE-2023-35048 affects the WordPress plugin “Booking and Rental Manager for Bike” (also listed as MagePeople Booking and Rental Manager for Woo/Car/etc.) at versions ≤ 1.2.1. The root cause is improper input sanitization/escaping of plugin settings, enabling an authenticated (admin+) Stored Cross...

5.9CVSS5.2AI score0.00442EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/06/23 11:50 a.m.24 views

CVE-2023-35048 WordPress Booking and Rental Manager Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in MagePeople Team Booking and Rental Manager for Bike plugin = 1.2.1 versions...

5.9CVSS5.6AI score0.00442EPSS
Exploits1References1
Patchstack
Patchstack
added 2023/06/13 12:0 a.m.10 views

WordPress Booking and Rental Manager Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS)

Software Booking and Rental Manager Type Plugin Vulnerable versions = 1.2.1 Fixed in 1.2.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-35048 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 73d697a7ce84 Credits NeginNrb...

5.9CVSS5.7AI score0.00442EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder