CVE-2023-43378 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A cross-site scripting (XSS) vulnerability in Hoteldruid v3.0.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into th…
Medium CVSS: 6.1

CVE-2023-43378

A cross-site scripting (XSS) vulnerability in Hoteldruid v3.0.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the commento1_1 parameter.
Vendor
Digitaldruid
Product
Hoteldruid
CWE
CWE-79
Yayın Tarihi
2025-04-22 18:15:57
Güncelleme
2025-06-23 18:15:42
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-79 Hoteldruid MEDIUM Digitaldruid 2025

Referanslar

https://flashy-lemonade-192.notion.site/Cross-site-scripting-in-hoteldruid-version-3-0-5-via-commento1_1-post-parameter-44ff18cb61cd4a80bbba75d5e4360ee4 https://flashy-lemonade-192.notion.site/Cross-site-scripting-in-hoteldruid-version-3-0-5-via-commento1_1-post-parameter-44ff18cb61cd4a80bbba75d5e4360ee4