Security Advisory

CVE-2021-25024

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-01-17 13:00:31

Last updated 2024-08-03 19:49:14

Assigner WPScan

State PUBLISHED

Description

The EventCalendar WordPress plugin before 1.1.51 does not escape some user input before outputting it back in attributes, leading to Reflected Cross-SIte Scripting issues

← Browse all CVEs View on cve.org ↗