First published: Mon Jan 13 2020(Updated: )
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Reflected XSS via a search query.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Cththemes Citybook | <2.3.4 | |
Cththemes Easybook | <1.2.2 | |
Cththemes Townhub | <1.0.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this vulnerability is CVE-2019-20210.
The severity of CVE-2019-20210 is medium (6.1).
The CTHthemes CityBook before version 2.3.4, TownHub before version 1.0.6, and EasyBook before version 1.2.2 themes for WordPress are affected by CVE-2019-20210.
CVE-2019-20210 can be exploited via a reflected XSS attack using a search query.
Yes, you can find more information about CVE-2019-20210 at the following references: [Link 1](https://cxsecurity.com/issue/WLB-2019120110), [Link 2](https://cxsecurity.com/issue/WLB-2019120111), [Link 3](https://cxsecurity.com/issue/WLB-2019120112).