Back to search
CVE-2017-2168
Published: May 22, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
Cross-site scripting vulnerability in WP Booking System Free version prior to version 1.4 and WP Booking System Premium version prior to version 3.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
| Vendor | Product | Versions |
|---|---|---|
WP Booking System | WP Booking System Free version | affected prior to version 1.4 |
WP Booking System | WP Booking System Premium version | affected prior to version 3.7 |
References
JVN#96165722
third-party-advisory
x_refsource_JVN
https://wpvulndb.com/vulnerabilities/8830
x_refsource_MISC
JVNDB-2017-000092
third-party-advisory
x_refsource_JVNDB
https://wordpress.org/plugins/wp-booking-system/#developers
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now