Lucene search
K

5 matches found

Nuclei
Nuclei
added 16 hours ago11 views

WP BASE Booking - Reflected XSS

WP BASE Booking of Appointments, Services and Events WordPress plugin 5.0.0 contains a reflected cross-site scripting caused by lack of sanitization and escaping of a parameter before output, letting attackers execute malicious scripts in high privilege users' browsers, exploit requires victim to...

6.1CVSS7.1AI score0.00578EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/28 6:27 a.m.7 views

CVE-2024-12737

The WP BASE Booking of Appointments, Services and Events WordPress plugin before 5.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS6AI score0.00578EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/02/26 6:0 a.m.6 views

CVE-2024-12737 WP BASE Booking of Appointments, Services and Events < 5.0.0 - Reflected XSS

The WP BASE Booking of Appointments, Services and Events WordPress plugin before 5.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1AI score0.00578EPSS
Exploits1References1
CVE
CVE
added 2025/02/26 6:0 a.m.64 views

CVE-2024-12737

CVE-2024-12737 : WP BASE Booking of Appointments, Services and Events (WordPress)

6.1CVSS6.1AI score0.00578EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/02/26 6:0 a.m.14 views

CVE-2024-12737 WP BASE Booking of Appointments, Services and Events < 5.0.0 - Reflected XSS

The WP BASE Booking of Appointments, Services and Events WordPress plugin before 5.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

0.00578EPSS
Exploits1References1
Rows per page
Query Builder