3 matches found
WordPress Subscriber Addons for The Events Calendar Plugin <= 5.5 is vulnerable to Cross Site Scripting (XSS)
Software Subscriber Addons for The Events Calendar Type Plugin Vulnerable versions = 5.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID faec0e8594b3 Credits Rafie...
WordPress Subscriber Addons for The Events Calendar plugin < 2.0.1 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Subscriber Addons for The Events Calendar plugin versions 2.0.1. Solution Update the WordPress Subscriber Addons for The Events Calendar plugin to the latest available version at least 2.0.1...
WordPress Subscriber Addons for The Events Calendar plugin < 2.0.1 - Sensitive Information Disclosure vulnerability
Sensitive Information Disclosure vulnerability discovered in WordPress Subscriber Addons for The Events Calendar plugin versions 2.0.1. Solution Update the WordPress Subscriber Addons for The Events Calendar plugin to the latest available version at least 2.0.1...