Vr Calendar Security Vulnerabilities and Issues — Vr Calendar CVE List

Lucene search

Vr Calendar ProjectVr Calendar

3 matches found

CVE•added 2022/08/15 11:21 a.m.•72 views

CVE-2022-2314

The VR Calendar WordPress plugin through 2.3.2 lets any user execute arbitrary PHP functions on the site.

9.8CVSS9.8AI score0.76316EPSS

CVE•added 2022/11/03 6:15 p.m.•32 views

CVE-2022-3852

The VR Calendar plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.3.3. This is due to missing or incorrect nonce validation on several functions. This makes it possible for unauthenticated attackers to delete, and modify calendars as well as the pl...

8.8CVSS6.1AI score0.00384EPSS

CVE•added 2025/06/27 8:15 a.m.•7 views

CVE-2025-5936

The VR Calendar plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.4.7. This is due to missing or incorrect nonce validation on the syncCalendar() function. This makes it possible for unauthenticated attackers to trigger a calendar sync via a fo...

4.3CVSS6.1AI score0.00014EPSS