CVE-2019-8937
published 2019-05-17CVE-2019-8937: HotelDruid 2.3.0 has XSS affecting the nsextt, cambia1, mese_fine, origine, and anno parameters in creaprezzi.php, tabella3.php, personalizza.php, and…
PriorityP343medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
10.68%
95.3th percentile
HotelDruid 2.3.0 has XSS affecting the nsextt, cambia1, mese_fine, origine, and anno parameters in creaprezzi.php, tabella3.php, personalizza.php, and visualizza_tabelle.php.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | hoteldruid | < hoteldruid 2.3.2-1 (bookworm) | hoteldruid 2.3.2-1 (bookworm) |
| digitaldruid | hoteldruid | — | — |
| digitaldruid | hoteldruid | >= 0 < 2.3.2-1 | 2.3.2-1 |
| digitaldruid | hoteldruid | >= 0 < 2.3.2-1 | 2.3.2-1 |
CVSS provenance
nvdv3.06.1MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv6.1MEDIUM
vendor_debian6.1MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2019-8937: hoteldruid - HotelDruid 2.3.0 has XSS affecting the nsextt, cambia1, mese_fine, origine, and ...
vendor_debian·2019·CVSS 6.1
CVE-2019-8937 [MEDIUM] CVE-2019-8937: hoteldruid - HotelDruid 2.3.0 has XSS affecting the nsextt, cambia1, mese_fine, origine, and ...
HotelDruid 2.3.0 has XSS affecting the nsextt, cambia1, mese_fine, origine, and anno parameters in creaprezzi.php, tabella3.php, personalizza.php, and visualizza_tabelle.php.
Scope: local
bookworm: resolved (fixed in 2.3.2-1)
bullseye: resolved (fixed in 2.3.2-1)
sid: resolved (fixed in 2.3.2-1)
GHSA
GHSA-fqxm-4mc3-6r2h: HotelDruid 2
ghsa_unreviewed·2022-05-24
CVE-2019-8937 [MEDIUM] GHSA-fqxm-4mc3-6r2h: HotelDruid 2
HotelDruid 2.3.0 has XSS affecting the nsextt, cambia1, mese_fine, origine, and anno parameters in creaprezzi.php, tabella3.php, personalizza.php, and visualizza_tabelle.php.
OSV
CVE-2019-8937: HotelDruid 2
osv·2019-05-17·CVSS 6.1
CVE-2019-8937 [MEDIUM] CVE-2019-8937: HotelDruid 2
HotelDruid 2.3.0 has XSS affecting the nsextt, cambia1, mese_fine, origine, and anno parameters in creaprezzi.php, tabella3.php, personalizza.php, and visualizza_tabelle.php.
No detection rules found.
Exploit-DB
HotelDruid 2.3 - Cross-Site Scripting
exploitdb·2019-02-20·CVSS 6.1
CVE-2019-8937 [MEDIUM] HotelDruid 2.3 - Cross-Site Scripting
HotelDruid 2.3 - Cross-Site Scripting
---
# Exploit Title: Hoteldruid 2.3 - 'nsextt' XSS Injection
# CVE: CVE-2019-8937
# Date: 18-02-2019
# Exploit Author: Mehmet EMIROGLU
# Vendor Homepage: https://sourceforge.net/projects/hoteldruid/
# Software Link: https://sourceforge.net/projects/hoteldruid/
# Version: v2.3
# Category: Webapps
# Tested on: Wamp64, @Win
# Software description: HotelDruid is a property management system (PMS)
designed to make hotel and hostel rooms
bed and breakfast apartments, or any other kind of daily rental easy to
manage from a web browser.
# POC - XSS
# Parameters : nsextt
# Attack Pattern : x%22+onmouseover%3dalert(0x000981)+x%3d%22
# GET Request : http://localhost/hoteldruid/visualizza_tabelle.php?nsextt=x"
onmouseover=alert(0x000981) x="
####################
Nuclei
HotelDruid 2.3.0 - Cross-Site Scripting
nuclei·CVSS 6.1
CVE-2019-8937 [MEDIUM] HotelDruid 2.3.0 - Cross-Site Scripting
HotelDruid 2.3.0 - Cross-Site Scripting
HotelDruid 2.3.0 contains a cross-site scripting vulnerability affecting nsextt, cambia1, mese_fine, origine, and anno parameters in creaprezzi.php, tabella3.php, personalizza.php, and visualizza_tabelle.php.
Template:
id: CVE-2019-8937
info:
name: HotelDruid 2.3.0 - Cross-Site Scripting
author: LogicalHunter
severity: medium
description: HotelDruid 2.3.0 contains a cross-site scripting vulnerability affecting nsextt, cambia1, mese_fine, origine, and anno parameters in creaprezzi.php, tabella3.php, personalizza.php, and visualizza_tabelle.php.
impact: |
Successful exploitation of this vulnerability could allow an attacker to execute malicious scripts in the context of the victim's browser, leading to potential data theft or unauthorized actions.
http://packetstormsecurity.com/files/151779/HotelDruid-2.3-Cross-Site-Scripting.htmlhttps://sourceforge.net/projects/hoteldruid/https://www.exploit-db.com/exploits/46429/http://packetstormsecurity.com/files/151779/HotelDruid-2.3-Cross-Site-Scripting.htmlhttps://sourceforge.net/projects/hoteldruid/https://www.exploit-db.com/exploits/46429/
2019-05-17
Published