CVE-2021-24553
The CVE-2021-24553 entry concerns the Timeline Calendar WordPress plugin (versions up to 1.2). The underlying issue is an authenticated SQL injection caused by not sanitising, validating, or escaping the edit GET parameter before it is used in a SQL statement when editing events; multiple SQL inj...