CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 1CVE-2023-24397 – WordPress Reservation.Studio widget Plugin <= 1.0.11 is vulnerable to Cross Site Scripting (XSS)
https://notcve.org/view.php?id=CVE-2023-24397
04 Jul 2023 — Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Reservation.Studio Reservation.Studio widget plugin <= 1.0.11 versions. Vulnerabilidad de Cross-Site Scripting (XSS) Almacenado en el plugin Reservation.Studio widget de Reservation.Studio que afecta a las versiones 1.0.11 e inferiores. Para explotar esta vulnerabilidad hace falta estar autenticado y tener permisos de administrador o superior. The Reservation.Studio widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via ... • https://patchstack.com/database/vulnerability/reservation-studio-widget/wordpress-reservation-studio-widget-plugin-1-0-5-cross-site-scripting-xss-vulnerability?_s_id=cve • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •