6 matches found
CVE-2024-25916
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joseph C Dolson My Calendar allows Stored XSS.This issue affects My Calendar: from n/a through 3.4.23...
CVE-2024-25916
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joseph C Dolson My Calendar allows Stored XSS.This issue affects My Calendar: from n/a through 3.4.23...
CVE-2024-25916 WordPress My Calendar plugin <= 3.4.23 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joseph C Dolson My Calendar allows Stored XSS.This issue affects My Calendar: from n/a through 3.4.23...
CVE-2024-25916
CVE-2024-25916 affects the WordPress My Calendar plugin up to version 3.4.23. The root cause is improper neutralization of input during page generation, resulting in Stored Cross-Site Scripting due to insufficient input sanitization and output escaping on user-supplied attributes. The vulnerabili...
CVE-2024-25916 WordPress My Calendar plugin <= 3.4.23 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joseph C Dolson My Calendar allows Stored XSS.This issue affects My Calendar: from n/a through 3.4.23...
WordPress My Calendar Plugin <= 3.4.23 is vulnerable to Cross Site Scripting (XSS)
Software My Calendar Type Plugin Vulnerable versions = 3.4.23 Fixed in 3.4.24 OWASP Top 10 A4: Insecure Design Classification Cross Site Scripting XSS CVE CVE-2024-25916 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 0654701560fd Credits Steven Julian Required privilege...