CVE List

CVE-2019-20211

Moderate 6.1

The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via Listing Address, Listing Latitude, Listing Longitude, Email Address, Description, Name, Job or Position, Description, Service Name, Address, Latitude, Longitude, Phone Number, or Website.

Published January 13, 2020.

Affected software

Cththemes Citybook

Cththemes Townhub

Cththemes Easybook

Reference links

Sign Up for Alerts