CVE-2023-48839 Information

Description

Appointment Scheduler 3.0 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) issues via the name plugin_sms_api_key plugin_sms_country_code calendar_id title country name or customer_name parameter.

Reference

https://www.phpjabbers.com/appointment-scheduler/ http://packetstormsecurity.com/files/176055