CVE-2026-25465

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in codepeople CP Multi View Event Calendar cp-multi-view-calendar allows Stored XSS.This issue affects CP Multi View Event Calendar : from n/a through = 1.4.36...

CVE-2026-25465

CVE-2026-25465 : CP Multi View Events Calendar (cp-multi-view-calendar) is affected by an authenticated Stored XSS due to improper input neutralization during web page generation. The vulnerability affects CP Multi View Events Calendar versions from n/a up to and including 1.4.35. Successful expl...

CVE-2026-25465 WordPress CP Multi View Event Calendar plugin <= 1.4.36 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in codepeople CP Multi View Event Calendar cp-multi-view-calendar allows Stored XSS.This issue affects CP Multi View Event Calendar : from n/a through = 1.4.36...

PT-2026-27959

Name of the Vulnerable Software and Affected Versions codepeople CP Multi View Event Calendar versions through 1.4.35 Description The software contains a flaw related to improper input handling during web page generation, leading to a cross-site scripting issue. This allows for Stored XSS attacks...

EUVD-2023-27900

Malicious code in bioql PyPI...

EUVD-2023-32162

Malicious code in bioql PyPI...

WordPress Plugin CP Multi View Event Calendar Authorization Missing Vulnerability

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. An authorization missing vulnerability exists in the WordPress plugin CP Multi View Event...

CVE-2025-58009

The CVE-2025-58009 entry concerns CP Multi View Events Calendar for WordPress with a Missing Authorization flaw. Affected versions are listed as up to 1.4.32 (range includes unspecified start). The vulnerability arises from incorrectly configured access control security levels, enabling unauthori...

WordPress plugin CP Multi View Event Calendar 安全漏洞

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. An authorization missing vulnerability exists in the WordPress plugin CP Multi View Event...

CVE-2023-28492

Missing Authorization vulnerability in CodePeople CP Multi View Event Calendar allows Functionality Misuse.This issue affects CP Multi View Event Calendar: from n/a through 1.4.10...

CVE-2023-23814

Missing Authorization vulnerability in CodePeople CP Multi View Event Calendar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CP Multi View Event Calendar : from n/a through 1.4.13...

BIT-WORDPRESS-MULTISITE-2023-23814

Missing Authorization vulnerability in CodePeople CP Multi View Event Calendar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CP Multi View Event Calendar : from n/a through 1.4.13...

CVE-2023-23814

Missing Authorization vulnerability in CodePeople CP Multi View Event Calendar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CP Multi View Event Calendar : from n/a through 1.4.13...

CVE-2023-23814 WordPress Calendar Event Multi View plugin <= 1.4.13 - Broken Access Control vulnerability

Missing Authorization vulnerability in codepeople CP Multi View Event Calendar cp-multi-view-calendar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CP Multi View Event Calendar : from n/a through = 1.4.13...

CVE-2023-23814

CVE-2023-23814 affects WordPress CP Multi View Event Calendar plugin (

WordPress CP Multi-View Calendar Unauthenticated SQL Injection Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'uri' class MetasploitModule 'WordPress CP Multi-View Calendar Unauthenticated SQL Injection Scanner', 'Description' = %q This module will scan given instances f...

CVE-2023-28492

Missing Authorization vulnerability in CodePeople CP Multi View Event Calendar allows Functionality Misuse.This issue affects CP Multi View Event Calendar: from n/a through 1.4.10...

CVE-2023-28492 WordPress Calendar Event Multi View plugin <= 1.4.10 - Missing Authorization Leading To Feedback Submission vulnerability

Missing Authorization vulnerability in CodePeople CP Multi View Event Calendar allows Functionality Misuse.This issue affects CP Multi View Event Calendar: from n/a through 1.4.10...

WordPress CP Multi View Event Calendar Plugin <= 1.4.13 is vulnerable to Broken Access Control

Software CP Multi View Event Calendar Type Plugin Vulnerable versions = 1.4.13 Fixed in 1.4.15 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-23814 Patch priority Low CVSS severity Low 3.8 Developer Claim ownership PSID cf4c806e3e64 Credits yuyudhn Requir...

WordPress CP Multi View Event Calendar Plugin 1.1.7 - SQL Injection

Exploit Title: WordPress cp-multi-view-calendar.1.1.7 Unauthenticated SQL injection vulnerabilities Date: 2015-07-10 Google Dork: Index of /wordpress/wp-content/plugins/cp-multi-view-calendar Vendor Homepage: http://wordpress.dwbooster.com/ Software Link:...