Reservit Hotel 2.1 – Stored Cross-Site Scripting (XSS) 

# Exploit Title: Reservit Hotel  Content
3. Add the following payload to the Button text > French field sane save: "
style=animation-name:rotation onanimationstart=alert(/XSS/)//
4. The XSS will trigger upon saving and when any user will access the
content dashboard again

References:
https://wpscan.com/vulnerability/1157d6ae-af8b-4508-97e9-b9e86f612550/
https://www.cve.org/CVERecord?id=CVE-2024-9458

آفاق هاستینگ مدیریت سرور مشاور و پشتیبان فنی

نوشته های مشابه

Multiple vulnerabilities in BizRobo!

TP-Link Deco BE65 Pro vulnerable to OS command injection

spider orange

Next.js Middleware 15.2.2 – Authorization Bypass

spider orange

IBM Security Verify Access 10.0.0 – Open Redirect during OAuth Flow