Medium severity4.8NVD Advisory· Published Jan 13, 2018· Updated Jun 17, 2026
CVE-2018-5670
CVE-2018-5670
Description
An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php sale_conditions[count][] parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: = 2.1.7
- Range: =2.1.7
Patches
Vulnerability mechanics
References
2- github.com/d4wner/Vulnerabilities-Report/blob/master/booking-calendar.mdnvdExploitThird Party Advisory
- wpvulndb.com/vulnerabilities/9012nvdThird Party Advisory
News mentions
0No linked articles in our index yet.