Online Hotel Booking System Pro <= 1.1 - Unauthenticated Stored Cross-Site Scripting (XSS)



Description
An unauthenticated user can inject malicious JavaScript via the booking form, specifically in the new user details.. The XSS payload is then executed when an authenticated administrator user views the booking on the Customer-booking page.
Proof of Concept
Inject XSS via most fields in the booking form, which will then be executed on the Customer-booking admin page, when viewed by an authenticated administrator.

Affects Plugin

no known fix

References

PacketStorm 157116
URL https://codecanyon.net/item/online-hotel-booking-system-pro-wordpress-plugin/9338914

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Original Researcher @ThelastVvV
Views 1100
Verified No
WPVDB ID 10171

Timeline

Publicly Published 2020-04-04 (about 2 months ago)
Added 2020-04-09 (about 2 months ago)
Last Updated 2020-04-12 (about 1 month ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin