EPSS
Percentile
65.3%
Cross Site Scripting (XSS) in Hotels_Server v1.0 allows remote attackers to execute arbitrary code by injecting crafted commands the data fields in the component “/controller/publishHotel.php”.
github.com/FantasticLBP/Hotels_Server/issues/3