2 matches found
CVE-2018-6891
Bookly 1 WordPress Booking Plugin Lite before 14.5 has XSS via a jQuery.ajax request to ng-paymentdetailsdialog.js...
CVE-2018-6891
CVE-2018-6891 affects Bookly #1 WordPress Booking Plugin Lite prior to version 14.5. The issue is a cross-site scripting (XSS) vulnerability exploited through a jQuery.ajax request to ng-payment_details_dialog.js, enabling injection of arbitrary JavaScript code into the admin panel. Affected prod...