3 matches found
CVE-2023-49151
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Simple Calendar Simple Calendar – Google Calendar Plugin allows Stored XSS.This issue affects Simple Calendar – Google Calendar Plugin: from n/a through 3.2.6...
CVE-2023-49151
Summary: CVE-2023-49151 affects the WordPress plugin Google Calendar Events (aka Simple Calendar – Google Calendar Plugin), with affected versions up to 3.2.6. The vulnerability is a stored XSS caused by improper neutralization of input during web page generation. The issue supports a network att...
WordPress Google Calendar Events Plugin <= 3.2.7 is vulnerable to Cross Site Scripting (XSS)
Software Google Calendar Events Type Plugin Vulnerable versions = 3.2.7 Fixed in 3.2.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-49151 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID a5cf8b7589dc Credits Abdi Pranata Required privilege...