Published: 03/08/2021 Updated: 11/08/2021

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

A reflected cross-site scripting (XSS) vulnerability exists in multiple pages in version 3.0.2 of the Hotel Druid application that allows for arbitrary execution of JavaScript commands.

Vulnerable Product	Search on Vulmon	Subscribe to Product
digitaldruid hoteldruid 3.0.2

Debian Bug report logs - #991910 hoteldruid: CVE-2021-37832 CVE-2021-37833 Package: src:hoteldruid; Maintainer for src:hoteldruid is Marco Maria Francesco De Santis <marco@digitaldruidnet>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Thu, 5 Aug 2021 07:36:02 UTC Severity: important Tags: security, upstre ...

CVE 2021-37833 Hotel Druid 3.0.2 Reflected Cross Site Scripting

CVE 2021-37833 Hotel Druid 302 Reflected Cross Site Scripting Vulnerability A reflected Cross Site Scripting vulnerability exists in multiple pages in version 302 of the Hotel Druid application that allows for arbitrary execution of JavaScript commands cvemitreorg/cgi-bin/cvenamecgi?name=CVE-2021-37833 Vulnerable PHP Pages: crea_modelliphp - cambia_frasi parame

CWE-79 https://www.hoteldruid.com https://github.com/dievus/CVE-2021-37833 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991910 https://nvd.nist.gov https://github.com/dievus/CVE-2021-37833

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2021-37833

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect