CVE-2024-10177 | markkinchin Beds24 Online Booking Plugin up to 2.0.26 on WordPress Shortcode beds24-link cross site scripting

Posted by Angelo Barbosa | Nov 21, 2024 | CVE

A vulnerability was found in markkinchin Beds24 Online Booking Plugin up to 2.0.26 on WordPress and classified as problematic. Affected by this issue is the function beds24-link of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-10177. The attack may be launched remotely. There is no exploit available.

CVE-2024-10177 | markkinchin Beds24 Online Booking Plugin up to 2.0.26 on WordPress Shortcode beds24-link cross site scripting

Related Posts

CVE-2024-6150 | Citrix Provisioning denial of service (CTX678025)

CVE-2023-34027 | Rajnish Arora Recently Viewed Products Plugin up to 1.0.0 on WordPress deserialization

CVE-2024-22098 | OpenHarmony up to 3.2.4 use after free

CVE-2023-50333 | Mattermost up to 8.1.6/9.2.2 Guest Demotion access control