4 matches found
CVE-2022-2314
The VR Calendar WordPress plugin through 2.3.2 lets any user execute arbitrary PHP functions on the site...
CVE-2022-2314
creationtimestamp| type| source ---|---|--- 2022-08-15 14:37:48+00:00| seen| https://t.me/cibsecurity/48135 2025-01-26 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-26 2025-02-09 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-02-09...
CVE-2022-2314 VR Calendar < 2.3.2 - Unauthenticated Arbitrary Function Call
The VR Calendar WordPress plugin through 2.3.2 lets any user execute arbitrary PHP functions on the site...
CVE-2022-2314
The CVE-2022-2314 case concerns the WordPress VR Calendar plugin (versions up to and including 2.3.2). Affected component: VR Calendar WordPress plugin; root cause: unauthenticated arbitrary PHP function calls, enabling remote code execution. Impact stated across sources: attacker can execute arb...