Lucene search
+L

87 matches found

CNVD
CNVD
added 2021/12/09 12:0 a.m.15 views

WordPress Registrations for the Events Calendar plugin SQL injection vulnerability

WordPress is the Wordpress Foundation's suite of blogging platforms developed using the PHP language. The platform supports the hosting of personal blogging sites on servers with PHP and MySQL.The WordPress Registrations for the Events Calendar plugin had a SQL injection vulnerability prior to...

9.8CVSS3AI score0.07474EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2021/11/29 12:0 a.m.7 views

PT-2021-16349

Name of the Vulnerable Software and Affected Versions: The Registrations for the Events Calendar WordPress plugin versions prior to 2.7.5 Description: The issue concerns a Reflected Cross-Site Scripting problem. It arises because the v parameter is not properly escaped before being outputted back...

6.1CVSS5.6AI score0.01165EPSS
Exploits2References6
OpenVAS
OpenVAS
added 2019/09/16 12:0 a.m.99 views

WordPress The Events Calendar Plugin < 4.8.2 XSS Vulnerability

The WordPress plugin Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the...

6.1CVSS6.4AI score0.0106EPSS
Exploits0References2
OSV
OSV
added 2019/08/21 12:15 p.m.3 views

CVE-2019-15109

The the-events-calendar plugin before 4.8.2 for WordPress has XSS via the tribepaged URL parameter...

6.1CVSS6.3AI score0.0106EPSS
Exploits0References2
OSV
OSV
added 2018/01/12 5:29 p.m.5 views

CVE-2018-5315

The Wachipi WP Events Calendar plugin 1.0 for WordPress has SQL Injection via the eventid parameter to event.php...

9.8CVSS5.8AI score0.0487EPSS
Exploits5References2
CNVD
CNVD
added 2018/01/11 12:0 a.m.7 views

WordPress Wichipi Events Calendar Plugin SQL Injection Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site.Wachipi WP Events Calendar plugin is used in one of the task calendar plugin. A SQL injection vulnerability exists...

9.8CVSS8.1AI score0.0487EPSS
Exploits5References1
Patchstack
Patchstack
added 2014/08/01 12:0 a.m.12 views

WordPress The Events Calendar Plugin <= 3.0 - Reflected Cross Site Scripting

Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update the plugin...

2.1AI score
Exploits0Affected Software1
Rows per page
Query Builder