4 matches found
CVE-2023-43378
A cross-site scripting XSS vulnerability in Hoteldruid v3.0.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the commento11 parameter...
CVE-2023-43378
CVE-2023-43378 corresponds to an XSS vulnerability in Hoteldruid v3.0.5, exploitable via a crafted payload in the commento1_1 parameter. The CVE entry indicates attackers can execute arbitrary web scripts or HTML in victims’ browsers. The associated metrics show a CVSS v3.1 base score of 6.1 (MED...
CVE-2023-43378
A cross-site scripting XSS vulnerability in Hoteldruid v3.0.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the commento11 parameter...
CVE-2023-43378
A cross-site scripting XSS vulnerability in Hoteldruid v3.0.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the commento11 parameter...