Описание
Appointment Scheduler 3.0 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) issues via the name, plugin_sms_api_key, plugin_sms_country_code, calendar_id, title, country name, or customer_name parameter.
Ссылки
- Third Party AdvisoryVDB Entry
- Product
- Third Party AdvisoryVDB Entry
- Product
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpjabbers:appointment_scheduler:3.0:*:*:*:*:*:*:*
EPSS
Процентиль: 38%
0.00169
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 5.4
github
около 2 лет назад
Appointment Scheduler 3.0 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) issues via the name, plugin_sms_api_key, plugin_sms_country_code, calendar_id, title, country name, or customer_name parameter.
EPSS
Процентиль: 38%
0.00169
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79