Medium severity4.8NVD Advisory· Published Aug 22, 2022· Updated Jun 17, 2026
CVE-2021-36847
CVE-2021-36847
Description
Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WebbaPlugins Webba Booking plugin <= 4.2.21 at WordPress.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=4.2.21
- WebbaPlugins/Webba Booking (WordPress plugin)v5Range: <= 4.2.21
Patches
Vulnerability mechanics
References
2- patchstack.com/database/vulnerability/webba-booking-lite/wordpress-webba-booking-plugin-4-2-21-authenticated-stored-cross-site-scripting-xss-vulnerabilitynvdPatchThird Party Advisory
- wordpress.org/plugins/webba-booking-lite/nvdProductRelease NotesThird Party Advisory
News mentions
0No linked articles in our index yet.