Security Advisory

CVE-2020-25444

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-07-14 14:35:24

Last updated 2024-08-04 15:33:05

Assigner mitre

State PUBLISHED

Description

Cross Site Scripting (XSS) vulnerability in Booking Core - Ultimate Booking System Booking Core 1.7.0 via the (1) "About Yourself” section under the “My Profile” page, " (2) “Hotel Policy” field under the “Hotel Details” page, (3) “Pricing code” and “name” fields under the “Manage Tour” page, and (4) all the labels under the “Menu” section.

← Browse all CVEs View on cve.org ↗