WordPress is the Wordpress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports the hosting of personal blogging sites on servers with PHP and MySQL. WordPress WP Booking System plugin has a cross-site scripting vulnerability in versions prior to 2.0.15, which stems from the lack of proper validation of client-side data by the WEB application. An attacker could use this vulnerability to execute JavaScript code on the client side.