CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-39103

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00239EPSS

Exploits0References2

OSV•added 2022/09/21 8:15 p.m.•1 views

CVE-2022-36390

Authenticated subscriber+ Reflected Cross-Site Scripting XSS vulnerability in Totalsoft Event Calendar – Calendar plugin = 1.4.6 at WordPress...

5.4CVSS5.8AI score0.00239EPSS

Exploits0References2

NVD•added 2022/09/21 8:15 p.m.•10 views

CVE-2022-36390

Authenticated subscriber+ Reflected Cross-Site Scripting XSS vulnerability in Totalsoft Event Calendar – Calendar plugin = 1.4.6 at WordPress...

5.4CVSS0.00239EPSS

Exploits0References2

Prion•added 2022/09/21 8:15 p.m.•13 views

Cross site scripting

Authenticated subscriber+ Reflected Cross-Site Scripting XSS vulnerability in Totalsoft Event Calendar – Calendar plugin = 1.4.6 at WordPress...

4.9CVSS5.3AI score0.00239EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2022/09/21 7:3 p.m.•6 views

CVE-2022-36390 WordPress Event Calendar – Calendar plugin <= 1.4.6 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability

Authenticated subscriber+ Reflected Cross-Site Scripting XSS vulnerability in Totalsoft Event Calendar – Calendar plugin = 1.4.6 at WordPress...

4.1CVSS4.5AI score0.00239EPSS

Exploits0References2

CVE•added 2022/09/21 7:3 p.m.•65 views

CVE-2022-36390

The CVE-2022-36390 entry concerns the WordPress Totalsoft Event Calendar – Calendar plugin (versions 1.4.6 and earlier). The root cause is an authenticated reflected cross-site scripting (XSS) vulnerability in the plugin’s handling of input, which can affect authenticated users (subscriber+). Pra...

5.4CVSS4.7AI score0.00239EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2022/09/21 12:0 a.m.•2 views

PT-2022-23350 · Totalsoft · Totalsoft Event Calendar – Calendar Plugin

Name of the Vulnerable Software and Affected Versions: Totalsoft Event Calendar – Calendar plugin versions 1.4.6 and earlier Description: The issue is related to an Authenticated Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker could potentially inject malicious scrip...

5.4CVSS5.2AI score0.00239EPSS

Exploits0References5

NVD•added 2022/09/09 3:15 p.m.•9 views

CVE-2022-38067

Unauthenticated Event Deletion vulnerability in Totalsoft Event Calendar – Calendar plugin = 1.4.6 at WordPress...

6.5CVSS0.00233EPSS

Exploits0References2

Prion•added 2022/09/09 3:15 p.m.•19 views

Arbitrary file deletion

Unauthenticated Event Deletion vulnerability in Totalsoft Event Calendar – Calendar plugin = 1.4.6 at WordPress...

5CVSS5.3AI score0.00233EPSS

Exploits0References2Affected Software1

Cvelist•added 2022/09/09 2:39 p.m.•11 views

CVE-2022-38067 WordPress Event Calendar – Calendar plugin <= 1.4.6 - Unauthenticated Event Deletion vulnerability

Unauthenticated Event Deletion vulnerability in Totalsoft Event Calendar – Calendar plugin = 1.4.6 at WordPress...

6.5CVSS6.7AI score0.00233EPSS

Exploits0References2

CVE•added 2022/09/09 2:39 p.m.•61 views

CVE-2022-38067

CVE-2022-38067 affects the WordPress plugin Totalsoft Event Calendar – Calendar (versions

6.5CVSS5.4AI score0.00233EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2022/09/09 12:0 a.m.•4 views

PT-2022-24182 · Totalsoft · Totalsoft Event Calendar

Name of the Vulnerable Software and Affected Versions: Totalsoft Event Calendar – Calendar plugin versions 1.4.6 and earlier Description: The issue concerns an Unauthenticated Event Deletion vulnerability. Recommendations: For versions 1.4.6 and earlier, update to a version later than 1.4.6 to...

6.5CVSS5.2AI score0.00233EPSS

Exploits0References4

CNNVD•added 2022/09/09 12:0 a.m.•2 views

WordPress plugin Totalsoft Event Calendar – Calendar 权限许可和访问控制问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. WordPress plugin Totalsoft Event...

6.5CVSS5.8AI score0.00233EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by