3 matches found
CVE-2019-20212
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via the chat widget/page message form...
CVE-2019-20212
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via the chat widget/page message form...
CVE-2019-20212
CVE-2019-20212 affects WordPress themes CTHthemes CityBook (pre-2.3.4), TownHub (pre-1.0.6), and EasyBook (pre-1.2.2). The vulnerability is a Persistent XSS via the chat widget/page message form, allowing injected script to persist in user sessions. Red Hat and other sources corroborate the same ...