Approved changes feed: RSS · Atom

cpe:2.3:a:cththemes:easybook:*:*:*:*:*:wordpress:*:*

part: a version: * update: *

VendorCththemes (6c89002f-f347-5a6a-8b03-57dbef92c0b8)
ProductEasybook (c3b16e84-f1b2-54e5-a484-bf4850874cb5)
Edition*
Language*
Software edition*
Target softwarewordpress
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2019-20212 vulnerable 2026-06-08 05:13:30.580647 Details available
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via the chat widget/page message form.
Published: 2020-01-13T17:44:57.000Z
Updated: 2024-08-05T02:39:09.559Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-20211 vulnerable 2026-06-08 05:13:30.579925 Details available
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via Listing Address, Listing Latitude, Listing Longitude, Email Address, Description, Name, Job or Position, Description, Service Name, Address, Latitude, Longitude, Phone Number, or Website.
Published: 2020-01-13T17:39:09.000Z
Updated: 2024-08-05T02:39:09.313Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-20210 vulnerable 2026-06-08 05:13:30.579468 Details available
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Reflected XSS via a search query.
Published: 2020-01-13T17:16:15.000Z
Updated: 2024-08-05T02:39:09.902Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-20209 vulnerable 2026-06-08 05:13:30.578409 Details available
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow nsecure Direct Object Reference (IDOR) via wp-admin/admin-ajax.php to delete any page/post/listing.
Published: 2020-01-13T17:05:22.000Z
Updated: 2024-08-05T02:39:08.811Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.