4 matches found
CVE-2023-37970
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Matthew Fries MF Gig Calendar plugin = 1.2 versions...
CVE-2021-24510
The MF Gig Calendar WordPress plugin before 1.2 does not sanitise and escape the id GET parameter before outputting back in the admin dashboard when editing an Event, leading to a reflected Cross-Site Scripting issue...
CVE-2023-37970
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Matthew Fries MF Gig Calendar plugin = 1.2 versions...
CVE-2023-37970
CVE-2023-37970 affects the WordPress plugin MF Gig Calendar by Matthew Fries. Versions