.. / CVE-2021-37833

Exploit for Hotel Druid 3.0.2 - Cross-Site Scripting (CVE-2021-37833)

Description:

Hotel Druid 3.0.2 contains a cross-site scripting vulnerability in multiple pages which allows for arbitrary execution of JavaScript commands.

Nuclei Template

View the template here CVE-2021-37833.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2021/CVE-2021-37833.yaml
Copy

References:

https://www.hoteldruid.com
https://github.com/ARPSyndicate/cvemon
https://nvd.nist.gov/vuln/detail/CVE-2021-37833
https://github.com/ARPSyndicate/kenzer-templates
https://github.com/dievus/CVE-2021-37833