Cross-Site Scripting in Kiboko Hostel Plugin for WordPress
CVE-2019-12345
6.1MEDIUM
What is CVE-2019-12345?
An XSS vulnerability exists in the Kiboko Hostel plugin prior to version 1.1.4 for WordPress. This issue allows attackers to inject malicious scripts into web pages viewed by users. If exploited, it could lead to user information compromise and unauthorized actions within the application. Website administrators are advised to update the plugin to mitigate potential risks.