19 matches found
WordPress Event Calendar WD plugin <= 1.1.50 - Reflected Cross-Site Scripting (XSS) vulnerability
Reflected Cross-Site Scripting XSS vulnerability discovered by Krzysztof Zając in WordPress Event Calendar WD plugin versions = 1.1.50. Solution Update the WordPress Event Calendar WD plugin to the latest available version at least 1.1.51...
WordPress Event Calendar WD plugin <= 1.1.50 - Cross-Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability discovered by Krzysztof Zając in WordPress Event Calendar WD plugin versions = 1.1.50. Solution Update the WordPress Event Calendar WD plugin to the latest available version at least 1.1.51...
Event Calendar WD < 1.1.46 - Cross-Site Scripting (XSS)
The plugin was affected by a Cross-Site Scripting issue...
WordPress Event Calendar WD plugin <= 1.1.44 - Cross-Site Scripting (XSS) vulnerability
Cross-Site Scripting XSS vulnerability discovered in WordPress Event Calendar WD plugin versions = 1.1.44. Solution Update the WordPress Event Calendar WD plugin to the latest available version at least 1.1.45...
CVE-2018-16164
Cross-site scripting vulnerability in Event Calendar WD version 1.1.21 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2018-16164
Cross-site scripting vulnerability in Event Calendar WD version 1.1.21 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Cross-site scripting vulnerability in Event Calendar WD version 1.1.21 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2018-16164
Cross-site scripting vulnerability in Event Calendar WD version 1.1.21 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2018-16164
CVE-2018-16164 is a stored cross-site scripting vulnerability in the WordPress plugin Event Calendar WD (Web-Dorado) for version 1.1.21 and earlier. The flaw allows a logged-in attacker to inject arbitrary scripts/HTML via unspecified vectors (CWE-79). Impact is an arbitrary script execution in a...
WordPress Plugin Event Calendar WD Cross-Site Scripting Vulnerability
WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the WordPress plugin Event Calendar WD, which could allow an attacker to execu...
JVN#75738023: WordPress plugin "Event Calendar WD" vulnerable to cross-site scripting
The WordPress plugin "Event Calendar WD" provided by Web-Dorado contains a stored cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on a logged-in user's web browser. Solution Update the plugin Update the plugin according to the information provided by the...
Event Calendar WD <= 1.1.21 - Cross-Site Scripting (XSS)
The Event Calendar WD – Responsive Event Calendar plugin WordPress plugin was affected by a Cross-Site Scripting XSS security vulnerability...
Cross site scripting
Cross-site scripting vulnerability in Event Calendar WD prior to version 1.0.94 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2017-2224
Cross-site scripting vulnerability in Event Calendar WD prior to version 1.0.94 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2017-2224
The CVE-2017-2224 vulnerability affects the WordPress plugin Event Calendar WD (Web-Dorado). It is a cross-site scripting (XSS) flaw in versions prior to 1.0.94 (notably
CVE-2017-2224
Cross-site scripting vulnerability in Event Calendar WD prior to version 1.0.94 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
WordPress Event Calendar WD Plugin Cross-Site Scripting Vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site.Event Calendar WD is one of the calendar plugin. A cross-site scripting vulnerability exists in versions of the...
JVN#73550134: WordPress plugin "Event Calendar WD" vulnerable to cross-site scripting
The WordPress plugin "Event Calendar WD" provided by Web-Dorado contains a cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the logged in user's web browser. Solution Update the plugin Update the plugin according to the information provided by the developer...
Event Calendar WD <= 1.0.93 - Authenticated Cross-Site Scripting (XSS)
The Event Calendar WD – Responsive Event Calendar plugin WordPress plugin was affected by an Authenticated Cross-Site Scripting XSS security vulnerability...