2 matches found
WordPress My Reservation System plugin <= 2.3 - Reflected XSS vulnerability
Reflected XSS vulnerability discovered by Matías Schiappacasse & Lukas Gaete in WordPress Plugin My Reservation System versions = 2.3...
CVE-2025-7022 My Reservation System <= 2.3 - Reflected XSS
The My Reservation System WordPress plugin through 2.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...