Unrated severityNVD Advisory· Published Jan 9, 2019· Updated Aug 5, 2024
CVE-2018-16164
CVE-2018-16164
Description
Cross-site scripting vulnerability in Event Calendar WD version 1.1.21 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=1.1.21+ 1 more
- (no CPE)range: <=1.1.21
- (no CPE)range: 1.1.21 and earlier
Patches
Vulnerability mechanics
References
4- jvn.jp/en/jp/JVN75738023/index.htmlmitrethird-party-advisoryx_refsource_JVN
- plugins.trac.wordpress.org/changeset/1961423/mitrex_refsource_MISC
- wordpress.org/plugins/event-calendar-wd/mitrex_refsource_MISC
- wpvulndb.com/vulnerabilities/9199mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.