0.001 Low
EPSS
Percentile
40.8%
HotelDruid is vulnerable to cross-site scripting. The vulnerability exists due to the lack of sanitization in prenota.php affecting the fineperiodo1 parameter.
security-tracker.debian.org/tracker/CVE-2021-38559
vitthals.github.io/writeups/CVEs/Hoteldruid%203.0.2%20XSS
www.hoteldruid.com