CVE-2024-51628

NONE EPSS 0.22%

Nov 09, 2024

Updated Apr 01, 2026

Parameter	Value
Type	CWE-79 (Cross-Site Scripting (XSS))
Public PoC	No

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in EzyOnlineBookings EzyOnlineBookings Online Booking System Widget ezyonlinebookings-online-booking-system allows DOM-Based XSS.This issue affects EzyOnlineBookings Online Booking System Widget: from n/a through <= 1.3.

Weakness Type (CWE)

CWE-79 Cross-Site Scripting (XSS)

References 1

https://patchstack.com/database/Wordpress/Plugin/ezyonlinebookings-online-booki…

audit@patchstack.com

Share Post Share Share Share

CVE Details

CVE ID

CVE-2024-51628

Published Date

Nov 09, 2024

Vendor

Not specified

Severity

NONE

Exploit Prediction (EPSS)

Probability of Exploit 0.22%

Likelihood of exploitation in next 30 days

Percentile: 44.4th percentile (higher than 44.4% of all CVEs)

Standard patching cycle

Impact

Minimal impact

Source

View Advisory

Menu

CVE-2024-51628

Weakness Type (CWE)

References 1

CVE Details

Editor's Choice

Menu

CVE-2024-51628

Weakness Type (CWE)

References 1

CVE Details

Editor's Choice

Stay informed on cybersecurity