Lucene search
Krzysztof ZającPATCHSTACK:7327D7F35410679C2C10A8FDF64A926BHistoryDec 06, 2021 - 12:00 a.m.
WordPress Booking Calendar plugin <= 8.9.1 - Reflected Cross-Site Scripting (XSS) vulnerability
2021-12-0600:00:00
Krzysztof Zając
patchstack.com
3
0.001 Low
EPSS
Percentile
40.2%
Reflected Cross-Site Scripting (XSS) vulnerability discovered by Krzysztof Zając in WordPress Booking Calendar plugin (versions <= 8.9.1).
Solution
Update the WordPress Booking Calendar plugin to the latest available version (at least 8.9.2).
| CPE | Name | Operator | Version |
|---|---|---|---|
| booking calendar | le | 8.9.1 |
Related
nvd
nvd
CVE-2021-25040
2022-01-03 13:15:09
wpvulndb
wpvulndb
Booking Calendar < 8.9.2 - Reflected Cross-Site Scripting
2021-12-06 00:00:00
cnvd
cnvd
WordPress plugin Booking Calendar cross-site scripting vulnerability
2022-01-05 00:00:00
cve
cve
CVE-2021-25040
2022-01-03 13:15:09
wpexploit
wpexploit
Booking Calendar < 8.9.2 - Reflected Cross-Site Scripting
2021-12-06 00:00:00
cvelist
cvelist
CVE-2021-25040 Booking Calendar < 8.9.2 - Reflected Cross-Site Scripting
2022-01-03 12:49:18
prion
prion
Cross site scripting
2022-01-03 13:15:00