CVE-2018-5671
An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php extra_field1[items][field_item1][price_percent] parameter.
Cross-site Scripting
Vendor | Product | Version |
---|---|---|
booking_calendar_project | booking_calendar | 2.1.7 |
Common Weakness Enumeration