CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-37833

A reflected cross-site scripting (XSS) vulnerability exists in multiple pages in version 3.0.2 of the Hotel Druid application that allows for arbitrary execution of JavaScript commands.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.116

EPSS Ranking 93.6%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://github.com/dievus/CVE-2021-37833
https://www.hoteldruid.com
https://github.com/dievus/CVE-2021-37833
https://www.hoteldruid.com

Products affected by CVE-2021-37833

Digitaldruid » Hoteldruid » Version: 3.0.2

cpe:2.3:a:digitaldruid:hoteldruid:3.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-37833

Products

Pricing

Contact Us