Authenticated Reflected Cross-Site Scripting (XSS) vulnerability discovered by Vlad Vector (Patchstack) in WordPress Event Calendar – Calendar plugin (versions <= 1.4.6).
Update the WordPress Event Calendar – Calendar plugin to the latest available version (at least 1.4.7).
CPE | Name | Operator | Version |
---|---|---|---|
event calendar – calendar | le | 1.4.6 |