Beta

Report

CityBook <= 2.3.3 is vulnerable to Multiple vulnerabilities (Reflected XSS, Persistent XSS & IDOR)

N/A
Published
2020-01-08

The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Reflected XSS via a search query.

CVE

https://www.cve.org/CVERecord?id=CVE-2019-20210, 2019-20211, 2019-20212, 2019-20209

CVSS

Score:Unknown

Severity:Unknown

Version: 2.3.3

There is a patch available in v2.3.4 and we strongly recommend you update to this version as soon as possible.