EUVD-2024-31356

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Stored XSS vulnerability in LBell Pretty Google Calendar versions up to 1.7.2 due to input issues

Reporter	Title	Published	Views	Family All 10
CNNVD	WordPress plugin Pretty Google Calendar 安全漏洞	29 Apr 202400:00	–	cnnvd
CVE	CVE-2024-33640	29 Apr 202405:02	–	cve
Cvelist	CVE-2024-33640 WordPress Pretty Google Calendar plugin <= 1.7.2 - Cross Site Scripting (XSS) vulnerability	29 Apr 202405:02	–	cvelist
NVD	CVE-2024-33640	29 Apr 202405:15	–	nvd
Patchstack	WordPress Pretty Google Calendar Plugin <= 1.7.2 is vulnerable to Cross Site Scripting (XSS)	25 Apr 202400:00	–	patchstack
Patchstack	WordPress Pretty Google Calendar plugin <= 1.7.2 - Cross Site Scripting (XSS) vulnerability	25 Apr 202417:49	–	patchstack
RedhatCVE	CVE-2024-33640	23 May 202507:56	–	redhatcve
Vulnrichment	CVE-2024-33640 WordPress Pretty Google Calendar plugin <= 1.7.2 - Cross Site Scripting (XSS) vulnerability	29 Apr 202405:02	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (April 22, 2024 to April 28, 2024)	2 May 202414:49	–	wordfence
WPVulnDB	Pretty Google Calendar < 2.0.0 - Contributor+ Stored XSS	1 May 202400:00	–	wpvulndb

[
  {
    "enisaIdVendor": [
      {
        "id": "cfd1b658-f849-3b4f-9847-3f07202aee87",
        "vendor": {
          "name": "LBell"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "84f0845b-fb0d-35a9-bb3d-bfdce00ec65f",
        "product": {
          "name": "Pretty Google Calendar"
        },
        "product_version": "n/a ≤1.7.2"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/pretty-google-calendar/wordpress-pretty-google-calendar-plugin-1-7-2-cross-site-scripting-xss-vulnerability

03 Oct 2025 20:07Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.16.5

EPSS0.00185

SSVC