Vulnerability CVE-2020-9371

Vulnerability CVE-2020-9371

Published: 2020-03-04

Description:

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
3.5/10	2.9/10	6.8/10

Affected software
Codepeople -> Appointment booking calendar

http://packetstormsecurity.com/files/156694/WordPress-Appointment-Booking-Calendar-1.3.34-CSV-Injection.html

https://drive.google.com/open?id=1NNcYPaJir9SleyVr4cSPqpI2LNM7rtx9

https://wordpress.org/plugins/appointment-booking-calendar/#developers

https://wpvulndb.com/vulnerabilities/10110

https://www.hotdreamweaver.com/support/view.php?id=815925