CVE-2025-23606

CVE-2025-23606 pertains to Calendi (NotFound) and is a Reflected XSS vulnerability arising from improper neutralization of input during web page generation. Affected range is Calendi versions from n/a up to 1.1.1. Red Hat/Wordfence references corroborate the CVE-2025-23606 entry and describe the ...

CVE-2025-23606 WordPress Calendi plugin <= 1.1.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in sebkay Calendi calendi allows Reflected XSS.This issue affects Calendi: from n/a through = 1.1.1...