Shodan
Vulnerabilities
Vulnerable Software
Cththemes:  >> Townhub  Security Vulnerabilities
CVE-2019-20210
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Reflected XSS via a search query.
CVSS Score
6.1
EPSS Score
0.005
Published
2020-01-13
CVE-2019-20211
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via Listing Address, Listing Latitude, Listing Longitude, Email Address, Description, Name, Job or Position, Description, Service Name, Address, Latitude, Longitude, Phone Number, or Website.
CVSS Score
6.1
EPSS Score
0.008
Published
2020-01-13
CVE-2019-20212
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via the chat widget/page message form.
CVSS Score
6.1
EPSS Score
0.006
Published
2020-01-13
CVE-2019-20209
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow nsecure Direct Object Reference (IDOR) via wp-admin/admin-ajax.php to delete any page/post/listing.
CVSS Score
7.5
EPSS Score
0.01
Published
2020-01-13


Products
Pricing
Contact Us

Shodan ® - All rights reserved