cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2014-100009,https://securityvulnerability.io/vulnerability/CVE-2014-100009,,"The Joomlaskin JS Multi Hotel (aka JS MultiHotel and Js-Multi-Hotel) plugin 2.2.1 and earlier for WordPress allows remote attackers to obtain the installation path via a request to (1) functions.php, (2) myCalendar.php, (3) refreshDate.php, (4) show_image.php, (5) widget.php, (6) phpthumb/GdThumb.inc.php, or (7) phpthumb/thumb_plugins/gd_reflection.inc.php in includes/.",Wordpress,Js Multi Hotel,,,0.003120000008493662,false,,false,false,false,,false,false,2015-01-13T11:59:00.000Z,0
CVE-2014-100008,https://securityvulnerability.io/vulnerability/CVE-2014-100008,,Cross-site scripting (XSS) vulnerability in includes/delete_img.php in the Joomlaskin JS Multi Hotel (aka JS MultiHotel and Js-Multi-Hotel) plugin 2.2.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the path parameter.,Wordpress,Js Multi Hotel,,,0.0022499999031424522,false,,false,false,false,,false,false,2015-01-13T11:00:00.000Z,0
CVE-2013-7419,https://securityvulnerability.io/vulnerability/CVE-2013-7419,,Cross-site scripting (XSS) vulnerability in includes/refreshDate.php in the Joomlaskin JS Multi Hotel (aka JS MultiHotel and Js-Multi-Hotel) plugin 2.2.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the roomid parameter.,Wordpress,Js Multi Hotel,,,0.0014299999456852674,false,,false,false,false,,false,false,2015-01-09T18:59:00.000Z,0