CVE-2022-1932
Rezgo Online Booking < 4.1.8 - Reflected Cross-Site-Scripting
The Rezgo Online Booking WordPress plugin before 4.1.8 does not sanitise and escape some parameters before outputting them back in a page, leading to a Reflected Cross-Site Scripting, which can be exploited either via a LFI in an AJAX action, or direct call to the affected file
Affected products
Unknown · Rezgo Online BookingWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →