Cross-Site Scripting Vulnerability in Joomlaskin JS Multi Hotel Plugin for WordPress
CVE-2013-7419

Currently unrated

Key Information:

Vendor
Wordpress
Status
Js Multi Hotel
Vendor
CVE Published:
9 January 2015

Summary

The Joomlaskin JS Multi Hotel plugin for WordPress is susceptible to a Cross-site Scripting vulnerability due to improper handling of user input in the includes/refreshDate.php file. By manipulating the roomid parameter, attackers can inject arbitrary scripts or HTML, potentially compromising the user experience and security of the website. This vulnerability highlights the importance of proper input validation and sanitization in web applications.

References

http://packetstormsecurity.com/files/124239/WordPress-Js-...
x_refsource_MISC

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.