2 matches found
CVE-2019-13505
The Appointment Hour Booking plugin 1.1.44 for WordPress allows XSS via the E-mail field, as demonstrated by email1...
CVE-2019-13505
The CVE-2019-13505 entry concerns the WordPress Appointment Hour Booking plugin. Versions up to 1.1.45 are affected by a cross-site scripting (XSS) vulnerability in the E-mail field due to insufficient validation/handling of input, enabling malicious JavaScript execution. The issue is documented ...