Vulnerabilities (CVE)

Filtered by vendor Digitaldruid Subscribe
Filtered by product Hotel Druid
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-29839 1 Digitaldruid 1 Hotel Druid 2024-11-21 N/A 5.4 MEDIUM
A Stored Cross Site Scripting (XSS) vulnerability exists in multiple pages of Hotel Druid version 3.0.4, which allows arbitrary execution of commands. The vulnerable fields are Surname, Name, and Nickname in the Document function.