A vulnerability was found in markkinchin Beds24 Online Booking Plugin up to 2.0.26 on WordPress and classified as problematic. Affected by this issue is the function beds24-link of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-10177. The attack may be launched remotely. There is no exploit available.