CVE-2026-42751

Name of the Vulnerable Software and Affected Versions Booking Manager versions prior to 2.1.19

Description Booking Manager contains a stored cross-site scripting (XSS) flaw, which occurs when the application fails to properly neutralize input during the generation of web pages. This allows an attacker to store malicious scripts on the server that are later executed in the browsers of other users.

Recommendations Update to a version later than 2.1.18.