This host is installed with Wordpress Js-Multi-Hotel plugin and is prone to multiple vulnerabilities.

Successful exploitation will allow attacker to execute arbitrary HTML and script code in a user's browser session in the context of an affected site, and cause a denial of service via CPU consumption. Impact Level: System/Application

No solution or patch is available as of 20th February, 2015. Information regarding this issue will be updated once the solution details are available. For updates refer to http://www.joomlaskin.it

Multiple flaws are due to, - Input passed via the 'file' parameter show_image.php and 'path' parameter to delete_img.php are not properly sanitized before being returned to the user. - The /functions.php, /myCalendar.php, /refreshDate.php, /show_image.php, /widget.php, /phpthumb/GdThumb.inc.php, /phpthumb/thumb_plugins/gd_reflection.inc.php, and /includes/timthumb.php scripts discloses the software's installation path.

WordPress JS MultiHotel Plugin version 2.2.1, Other versions may also be affected.

Send a crafted data via HTTP GET request and check whether it is able to read cookie or not.

• http://packetstormsecurity.com/files/125959
• http://seclists.org/fulldisclosure/2014/Mar/413
• http://websecurity.com.ua/7082
• http://www.osvdb.com/105185

---

Updated on 2015-03-25