EPSS
Percentile
21.2%
Cross-Site Request Forgery (CSRF) vulnerability discovered by Krzysztof Zając in WordPress Event Calendar WD plugin (versions <= 1.1.50).
Update the WordPress Event Calendar WD plugin to the latest available version (at least 1.1.51).
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-25025
plugins.trac.wordpress.org/changeset/2644549
wordpress.org/plugins/event-calendar-wd/#developers