17 matches found
EUVD-2025-26916
Malicious code in bioql PyPI...
EUVD-2025-17165
Malicious code in bioql PyPI...
CVE-2025-58861
Cross-Site Request Forgery CSRF vulnerability in WP Corner Quick Event Calendar quick-event-calendar allows Stored XSS.This issue affects Quick Event Calendar: from n/a through = 1.4.9...
CVE-2025-58861
Cross-Site Request Forgery CSRF vulnerability in WP Corner Quick Event Calendar quick-event-calendar allows Stored XSS.This issue affects Quick Event Calendar: from n/a through = 1.4.9...
CVE-2025-58861 WordPress Quick Event Calendar Plugin <= 1.4.9 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in WP Corner Quick Event Calendar quick-event-calendar allows Stored XSS.This issue affects Quick Event Calendar: from n/a through = 1.4.9...
CVE-2025-58861 WordPress Quick Event Calendar Plugin <= 1.4.9 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in WP Corner Quick Event Calendar quick-event-calendar allows Stored XSS.This issue affects Quick Event Calendar: from n/a through = 1.4.9...
CVE-2025-58861
CVE-2025-58861 affects the WordPress plugin Quick Event Calendar (versions n/a–1.4.9). The issue is a Cross-Site Request Forgery (CSRF) vulnerability that enables Stored XSS. CVSS 3.1 base score 7.1 (HIGH) with network attack vector, no privileges required, user interaction required, and impact t...
WordPress Quick Event Calendar Plugin <= 1.4.9 - Cross Site Request Forgery (CSRF) Vulnerability
Cross Site Request Forgery CSRF Vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Quick Event Calendar versions = 1.4.9...
PT-2025-36200
Name of the Vulnerable Software and Affected Versions: Quick Event Calendar versions n/a through 1.4.9 Description: A Cross-Site Request Forgery CSRF vulnerability exists in WP Corner Quick Event Calendar, which also allows Stored Cross-Site Scripting XSS. Recommendations: Update Quick Event...
WordPress plugin Quick Event Calendar 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forgery...
CVE-2025-27360
Cross-Site Request Forgery CSRF vulnerability in WP Corner Quick Event Calendar quick-event-calendar allows Cross Site Request Forgery.This issue affects Quick Event Calendar: from n/a through = 1.4.9...
CVE-2025-27360
Cross-Site Request Forgery CSRF vulnerability in WP Corner Quick Event Calendar quick-event-calendar allows Cross Site Request Forgery.This issue affects Quick Event Calendar: from n/a through = 1.4.9...
CVE-2025-27360 WordPress Quick Event Calendar plugin <= 1.4.9 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in WP Corner Quick Event Calendar quick-event-calendar allows Cross Site Request Forgery.This issue affects Quick Event Calendar: from n/a through = 1.4.9...
CVE-2025-27360
CVE-2025-27360 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin Quick Event Calendar . The issue affects the plugin version range “from n/a through 1.4.9,” indicating presence in older builds up to 1.4.9. The description identifies CSRF as the core issue, but th...
CVE-2025-27360 WordPress Quick Event Calendar plugin <= 1.4.9 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in WP Corner Quick Event Calendar quick-event-calendar allows Cross Site Request Forgery.This issue affects Quick Event Calendar: from n/a through = 1.4.9...
PT-2025-24121 · WordPress · Wp Corner Quick Event Calendar
Name of the Vulnerable Software and Affected Versions: WP Corner Quick Event Calendar versions 1.4.9 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability, which allows an attacker to perform unauthorized actions on a user's account. Recommendations: For WP Corner...
WordPress plugin Quick Event Calendar 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forgery...