Lucene search
Modern Events Calendar Lite < 5.16.5 - Authenticated Stored Cross-Site Scripting (XSS)
The Modern Events Calendar Lite plugin version < 5.16.5 allows authenticated users to conduct stored Cross-Site Scripting attacks via the mic_comment field, leading to frontend execution of malicious payloads
Show more
| Reporter | Title | Published | Views | Family All 6 |
|---|---|---|---|---|
 | CVE-2021-24147 Modern Events Calendar Lite < 5.16.5 - Authenticated Stored Cross-Site Scripting (XSS) | 18 Mar 202114:57 | – | cvelist |
 | Modern Events Calendar Lite < 5.16.5 - Authenticated Stored Cross-Site Scripting (XSS) | 29 Jan 202100:00 | – | wpvulndb |
 | CVE-2021-24147 | 18 Mar 202115:15 | – | cve |
 | Cross site scripting | 18 Mar 202115:15 | – | prion |
 | CVE-2021-24147 | 18 Mar 202115:15 | – | nvd |
 | CVE-2021-24147 | 18 Mar 202115:15 | – | osv |
https://drive.google.com/file/d/1Cyy1Th5g1t9yXfvYGDrAFMgDP4USfv5c/view?usp=sharingTransform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo29 Jan 2021 00:00Current
0.1Low risk
Vulners AI Score0.1
EPSS0.001