6 matches found
CVE-2025-32597
Cross-Site Request Forgery CSRF vulnerability in George Sexton WordPress Events Calendar Plugin – connectDaily connect-daily-web-calendar allows Cross-Site Scripting XSS.This issue affects WordPress Events Calendar Plugin – connectDaily: from n/a through = 1.5.4...
CVE-2025-32597
Cross-Site Request Forgery CSRF vulnerability in George Sexton WordPress Events Calendar Plugin – connectDaily connect-daily-web-calendar allows Cross-Site Scripting XSS.This issue affects WordPress Events Calendar Plugin – connectDaily: from n/a through = 1.5.4...
CVE-2025-32597
CVE-2025-32597 affects the WordPress plugin WordPress Events Calendar Plugin – connectDaily (up to version 1.5.0). The vulnerability is described as Cross-Site Request Forgery (CSRF) that can lead to Stored Cross-Site Scripting (XSS). Public data shows a CVSS v3.1 base score of 7.1 (HIGH) with ne...
CVE-2025-32597 WordPress WordPress Events Calendar Plugin – connectDaily plugin <= 1.4.8 - CSRF to Cross-Site Scripting vulnerability
Cross-Site Request Forgery CSRF vulnerability in George Sexton WordPress Events Calendar Plugin – connectDaily allows Cross-Site Scripting XSS. This issue affects WordPress Events Calendar Plugin – connectDaily: from n/a through 1.4.8...
CVE-2025-32597 WordPress WordPress Events Calendar Plugin – connectDaily plugin <= 1.5.4 - CSRF to Cross-Site Scripting vulnerability
Cross-Site Request Forgery CSRF vulnerability in George Sexton WordPress Events Calendar Plugin – connectDaily connect-daily-web-calendar allows Cross-Site Scripting XSS.This issue affects WordPress Events Calendar Plugin – connectDaily: from n/a through = 1.5.4...
WordPress WordPress Events Calendar Plugin – connectDaily plugin <= 1.5.4 - CSRF to Cross-Site Scripting vulnerability
CSRF to Cross-Site Scripting vulnerability discovered by Dhabaleshwar Das in WordPress Plugin WordPress Events Calendar Plugin – connectDaily versions = 1.5.4...