Contributor Cross Site Scripting (XSS) in Fluent Booking <= 2.1.0 versions.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| WPManageNinja LLC | Fluent Booking | unaffected |
|
No data.
No data.
No data.
Project Subscriptions
No data.
Advisories
No advisories yet.
Fixes
Solution
Update the WordPress Fluent Booking Plugin to the latest available version (at least 2.1.1).
Workaround
No workaround given by the vendor.
References
History
Fri, 26 Jun 2026 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Contributor Cross Site Scripting (XSS) in Fluent Booking <= 2.1.0 versions. | |
| Title | WordPress Fluent Booking plugin <= 2.1.0 - Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
Projects
Sign in to view the affected projects.
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-26T14:53:14.405Z
Reserved: 2026-06-25T08:03:17.055Z
Link: CVE-2026-57638
Vulnrichment
No data.
NVD
No data.
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses