5 matches found
CVE-2025-32174
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tockify Tockify Events Calendar tockify-events-calendar allows DOM-Based XSS.This issue affects Tockify Events Calendar: from n/a through = 2.2.13...
CVE-2025-32174 WordPress Tockify Events Calendar plugin <= 2.2.13 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tockify Tockify Events Calendar allows DOM-Based XSS. This issue affects Tockify Events Calendar: from n/a through 2.2.13...
CVE-2025-32174
CVE-2025-32174 is a DOM-based XSS in Tockify Events Calendar (authenticated attack surface) affecting versions up to 2.2.13. The issue is categorized as Cross-site Scripting with DOM-based semantics; patch status in connected sources indicates the fix has been applied (Patched). No exploitation d...
CVE-2025-32174 WordPress Tockify Events Calendar plugin <= 2.2.13 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Tockify Tockify Events Calendar tockify-events-calendar allows DOM-Based XSS.This issue affects Tockify Events Calendar: from n/a through = 2.2.13...
WordPress Tockify Events Calendar plugin <= 2.2.13 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Yudistira Arya in WordPress Plugin Tockify Events Calendar versions = 2.2.13...