CVE-2023-29839

MEDIUM

HotelDruid 3.0.4 - Stored Cross-Site Scripting via Document Surname Name or Nickname Fields

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-29839. PoCs published by jichngan.

AI-analyzed exploit summary This repository contains a detailed writeup for CVE-2023-29839, a stored XSS vulnerability in Hotel Druid 3.0.4. It describes how arbitrary JavaScript can be executed via the Surname, Name, or Nickname fields in the 'Document' function, triggered by viewing an 'Example' document.

Description

A Stored Cross Site Scripting (XSS) vulnerability exists in multiple pages of Hotel Druid version 3.0.4, which allows arbitrary execution of commands. The vulnerable fields are Surname, Name, and Nickname in the Document function.

Exploits (1)

nomisec WRITEUP 1 stars
by jichngan · poc
https://github.com/jichngan/CVE-2023-29839

This repository contains a detailed writeup for CVE-2023-29839, a stored XSS vulnerability in Hotel Druid 3.0.4. It describes how arbitrary JavaScript can be executed via the Surname, Name, or Nickname fields in the 'Document' function, triggered by viewing an 'Example' document.

Classification
Writeup 100%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Hotel Druid 3.0.4
Auth required
Prerequisites: Access to the Hotel Druid application · Ability to modify client data (e.g., during registration or reservation)
MITRE ATT&CK
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Scores

CVSS v3 5.4
EPSS 0.0066
EPSS Percentile 47.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-79
Status published
Products (1)
digitaldruid/hoteldruid 3.0.4
Published May 03, 2023
Tracked Since Feb 18, 2026