← Back to CVE List

CVE-2023-48208

Published: 2023-12-07T07:15Z
Last Modified: 2024-11-21T08:31Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
A Cross Site Scripting vulnerability in Availability Booking Calendar 5.0 allows an attacker to inject JavaScript via the name, plugin_sms_api_key, plugin_sms_country_code, uuid, title, or country name parameter to index.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt