CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2020-23984
https://notcve.org/view.php?id=CVE-2020-23984
Online Hotel Booking System Pro PHP Version 1.3 has Persistent Cross-site Scripting in Customer registration-form all-tags. Online Hotel Booking System Pro PHP versión 1.3, presenta una vulnerabilidad de tipo Cross-site Scripting Persistente en todas las etiquetas del formulario de registro del Cliente • https://packetstormsecurity.com/files/157117/Online-Hotel-Booking-System-Pro-1.3-Cross-Site-Scripting.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2020-15536 – Online Hotel Booking System Pro <= 1.1 - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2020-15536
An issue was discovered in the bestsoftinc Hotel Booking System Pro plugin through 1.1 for WordPress. Persistent XSS can occur via any of the registration fields. Se detectó un problema en el plugin Bestsoftinc Hotel Booking System Pro versiones hasta 1.1 para WordPress. Un ataque de tipo XSS persistente puede producirse por medio de cualquiera de los campos de registro • https://packetstormsecurity.com/files/157116/WordPress-Hotel-Booking-System-Pro-1.1-Cross-Site-Scripting.html https://wpvulndb.com/vulnerabilities/10171 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •