Lucene search
K

4 matches found

NVD
NVD
added 2025/01/07 11:15 a.m.22 views

CVE-2025-22261

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Marcus aka @msykes WP FullCalendar wp-fullcalendar allows Stored XSS.This issue affects WP FullCalendar: from n/a through = 1.5...

6.5CVSS0.00289EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/07 10:49 a.m.30 views

CVE-2025-22261 WordPress WP FullCalendar plugin <= 1.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Marcus aka @msykes WP FullCalendar wp-fullcalendar allows Stored XSS.This issue affects WP FullCalendar: from n/a through = 1.5...

6.5CVSS0.00289EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/07 10:49 a.m.14 views

CVE-2025-22261 WordPress WP FullCalendar plugin <= 1.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pixelite WP FullCalendar wp-fullcalendar allows Stored XSS.This issue affects WP FullCalendar: from n/a through 1.5...

6.5CVSS6.7AI score0.00289EPSS
Exploits0References1
CVE
CVE
added 2025/01/07 10:49 a.m.62 views

CVE-2025-22261

CVE-2025-22261 is a real Stored Cross-Site Scripting vulnerability in the WP FullCalendar plugin for WordPress (wp-fullcalendar) affecting versions up to and including 1.5. The root cause is improper neutralization of user input during web page generation, allowing injected scripts to be stored a...

6.5CVSS7.2AI score0.00289EPSS
Exploits0References1
Rows per page
Query Builder