CVE-2025-46510

Publication date

2025-04-24 16:08:55

Family

Patchstack

State

PUBLISHED

Description

Cross-Site Request Forgery (CSRF) vulnerability in harrysudana Contact Form 7 Calendar allows Stored XSS. This issue affects Contact Form 7 Calendar: from n/a through 3.0.1.