Shodan
Vulnerabilities
Vulnerable Software
Cththemes:  >> Citybook  Security Vulnerabilities
CVE-2019-20210
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Reflected XSS via a search query.
CVSS Score
6.1
EPSS Score
0.031
Published
2020-01-13
CVE-2019-20211
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via Listing Address, Listing Latitude, Listing Longitude, Email Address, Description, Name, Job or Position, Description, Service Name, Address, Latitude, Longitude, Phone Number, or Website.
CVSS Score
6.1
EPSS Score
0.026
Published
2020-01-13
CVE-2019-20212
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via the chat widget/page message form.
CVSS Score
6.1
EPSS Score
0.026
Published
2020-01-13
CVE-2019-20209
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow nsecure Direct Object Reference (IDOR) via wp-admin/admin-ajax.php to delete any page/post/listing.
CVSS Score
7.5
EPSS Score
0.032
Published
2020-01-13


Products
Pricing
Contact Us

Shodan ® - All rights reserved