Search criteria
ⓘ
Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.
8 vulnerabilities found for townhub by cththemes
CVE-2019-20212 (GCVE-0-2019-20212)
Vulnerability from nvd – Published: 2020-01-13 17:44 – Updated: 2024-08-05 02:39
VLAI?
Summary
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via the chat widget/page message form.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T02:39:09.559Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via the chat widget/page message form."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-01-13T17:44:57.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-20212",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via the chat widget/page message form."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727",
"refsource": "MISC",
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"name": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571",
"refsource": "MISC",
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"name": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622",
"refsource": "MISC",
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10013",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10014",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10018",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120111",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120112",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120110",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2019-20212",
"datePublished": "2020-01-13T17:44:57.000Z",
"dateReserved": "2020-01-01T00:00:00.000Z",
"dateUpdated": "2024-08-05T02:39:09.559Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2019-20211 (GCVE-0-2019-20211)
Vulnerability from nvd – Published: 2020-01-13 17:39 – Updated: 2024-08-05 02:39
VLAI?
Summary
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via Listing Address, Listing Latitude, Listing Longitude, Email Address, Description, Name, Job or Position, Description, Service Name, Address, Latitude, Longitude, Phone Number, or Website.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T02:39:09.313Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via Listing Address, Listing Latitude, Listing Longitude, Email Address, Description, Name, Job or Position, Description, Service Name, Address, Latitude, Longitude, Phone Number, or Website."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-01-13T17:39:09.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-20211",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via Listing Address, Listing Latitude, Listing Longitude, Email Address, Description, Name, Job or Position, Description, Service Name, Address, Latitude, Longitude, Phone Number, or Website."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727",
"refsource": "MISC",
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"name": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571",
"refsource": "MISC",
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"name": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622",
"refsource": "MISC",
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10013",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10014",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10018",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120111",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120112",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120110",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2019-20211",
"datePublished": "2020-01-13T17:39:09.000Z",
"dateReserved": "2020-01-01T00:00:00.000Z",
"dateUpdated": "2024-08-05T02:39:09.313Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2019-20210 (GCVE-0-2019-20210)
Vulnerability from nvd – Published: 2020-01-13 17:16 – Updated: 2024-08-05 02:39
VLAI?
Summary
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Reflected XSS via a search query.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T02:39:09.902Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Reflected XSS via a search query."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-01-13T17:16:15.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-20210",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Reflected XSS via a search query."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727",
"refsource": "MISC",
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"name": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571",
"refsource": "MISC",
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"name": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622",
"refsource": "MISC",
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10013",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10014",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10018",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120111",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120112",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120110",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2019-20210",
"datePublished": "2020-01-13T17:16:15.000Z",
"dateReserved": "2020-01-01T00:00:00.000Z",
"dateUpdated": "2024-08-05T02:39:09.902Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2019-20209 (GCVE-0-2019-20209)
Vulnerability from nvd – Published: 2020-01-13 17:05 – Updated: 2024-08-05 02:39
VLAI?
Summary
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow nsecure Direct Object Reference (IDOR) via wp-admin/admin-ajax.php to delete any page/post/listing.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T02:39:08.811Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow nsecure Direct Object Reference (IDOR) via wp-admin/admin-ajax.php to delete any page/post/listing."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-01-13T17:26:13.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-20209",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow nsecure Direct Object Reference (IDOR) via wp-admin/admin-ajax.php to delete any page/post/listing."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727",
"refsource": "MISC",
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"name": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571",
"refsource": "MISC",
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"name": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622",
"refsource": "MISC",
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10013",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10014",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10018",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120111",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120112",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120110",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2019-20209",
"datePublished": "2020-01-13T17:05:22.000Z",
"dateReserved": "2020-01-01T00:00:00.000Z",
"dateUpdated": "2024-08-05T02:39:08.811Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2019-20212 (GCVE-0-2019-20212)
Vulnerability from cvelistv5 – Published: 2020-01-13 17:44 – Updated: 2024-08-05 02:39
VLAI?
Summary
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via the chat widget/page message form.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T02:39:09.559Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via the chat widget/page message form."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-01-13T17:44:57.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-20212",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via the chat widget/page message form."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727",
"refsource": "MISC",
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"name": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571",
"refsource": "MISC",
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"name": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622",
"refsource": "MISC",
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10013",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10014",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10018",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120111",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120112",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120110",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2019-20212",
"datePublished": "2020-01-13T17:44:57.000Z",
"dateReserved": "2020-01-01T00:00:00.000Z",
"dateUpdated": "2024-08-05T02:39:09.559Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2019-20211 (GCVE-0-2019-20211)
Vulnerability from cvelistv5 – Published: 2020-01-13 17:39 – Updated: 2024-08-05 02:39
VLAI?
Summary
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via Listing Address, Listing Latitude, Listing Longitude, Email Address, Description, Name, Job or Position, Description, Service Name, Address, Latitude, Longitude, Phone Number, or Website.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T02:39:09.313Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via Listing Address, Listing Latitude, Listing Longitude, Email Address, Description, Name, Job or Position, Description, Service Name, Address, Latitude, Longitude, Phone Number, or Website."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-01-13T17:39:09.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-20211",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via Listing Address, Listing Latitude, Listing Longitude, Email Address, Description, Name, Job or Position, Description, Service Name, Address, Latitude, Longitude, Phone Number, or Website."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727",
"refsource": "MISC",
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"name": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571",
"refsource": "MISC",
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"name": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622",
"refsource": "MISC",
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10013",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10014",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10018",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120111",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120112",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120110",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2019-20211",
"datePublished": "2020-01-13T17:39:09.000Z",
"dateReserved": "2020-01-01T00:00:00.000Z",
"dateUpdated": "2024-08-05T02:39:09.313Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2019-20210 (GCVE-0-2019-20210)
Vulnerability from cvelistv5 – Published: 2020-01-13 17:16 – Updated: 2024-08-05 02:39
VLAI?
Summary
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Reflected XSS via a search query.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T02:39:09.902Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Reflected XSS via a search query."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-01-13T17:16:15.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-20210",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Reflected XSS via a search query."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727",
"refsource": "MISC",
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"name": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571",
"refsource": "MISC",
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"name": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622",
"refsource": "MISC",
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10013",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10014",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10018",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120111",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120112",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120110",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2019-20210",
"datePublished": "2020-01-13T17:16:15.000Z",
"dateReserved": "2020-01-01T00:00:00.000Z",
"dateUpdated": "2024-08-05T02:39:09.902Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2019-20209 (GCVE-0-2019-20209)
Vulnerability from cvelistv5 – Published: 2020-01-13 17:05 – Updated: 2024-08-05 02:39
VLAI?
Summary
The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow nsecure Direct Object Reference (IDOR) via wp-admin/admin-ajax.php to delete any page/post/listing.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T02:39:08.811Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow nsecure Direct Object Reference (IDOR) via wp-admin/admin-ajax.php to delete any page/post/listing."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-01-13T17:26:13.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-20209",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow nsecure Direct Object Reference (IDOR) via wp-admin/admin-ajax.php to delete any page/post/listing."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727",
"refsource": "MISC",
"url": "https://themeforest.net/item/citybook-directory-listing-wordpress-theme/21694727"
},
{
"name": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571",
"refsource": "MISC",
"url": "https://themeforest.net/item/townhub-directory-listing-wordpress-theme/25019571"
},
{
"name": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622",
"refsource": "MISC",
"url": "https://themeforest.net/item/easybook-directory-listing-wordpress-theme/23206622"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10013",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10013"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10014",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10014"
},
{
"name": "https://wpvulndb.com/vulnerabilities/10018",
"refsource": "MISC",
"url": "https://wpvulndb.com/vulnerabilities/10018"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120111",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120111"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120112",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120112"
},
{
"name": "https://cxsecurity.com/issue/WLB-2019120110",
"refsource": "MISC",
"url": "https://cxsecurity.com/issue/WLB-2019120110"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2019-20209",
"datePublished": "2020-01-13T17:05:22.000Z",
"dateReserved": "2020-01-01T00:00:00.000Z",
"dateUpdated": "2024-08-05T02:39:08.811Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}