Medium severity4.8NVD Advisory· Published Jan 13, 2018· Updated Jun 17, 2026
CVE-2018-5672
CVE-2018-5672
Description
An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. XSS exists via the wp-admin/admin.php form_field5[label] parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: = 2.1.7
- Range: <=2.1.7
Patches
Vulnerability mechanics
References
2- github.com/d4wner/Vulnerabilities-Report/blob/master/booking-calendar.mdnvdExploitThird Party Advisory
- wpvulndb.com/vulnerabilities/9012nvdThird Party Advisory
News mentions
0No linked articles in our index yet.