Cross-Site Scripting Vulnerability in wp-easybooking Plugin for WordPress

CVE-2014-4584

What is CVE-2014-4584?

The wp-easybooking plugin for WordPress contains a Cross-Site Scripting (XSS) vulnerability in the admin/editFacility.php file. This issue allows remote attackers to exploit the fID parameter to inject arbitrary web scripts or HTML into a user’s browser. As a result, attackers may utilize this vulnerability to perform malicious actions, potentially compromising website security and user data.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References