CVE-2015-9270
CVE-2015-9270 corresponds to a cross-site scripting (XSS) vulnerability in the WordPress plugin The Holiday Calendar prior to version 1.11.3, exploitable via the thc-month parameter. Multiple sources (NVD entry and CNVD/CVE mirror, WPVulndb) describe an XSS in this plugin and versions before 1.11...