Medium severity6.1NVD Advisory· Published Aug 21, 2019· Updated Jun 17, 2026
CVE-2019-15109
CVE-2019-15109
Description
The the-events-calendar plugin before 4.8.2 for WordPress has XSS via the tribe_paged URL parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/the-events-calendardescription
- Range: <4.8.2
Patches
Vulnerability mechanics
References
2- wpvulndb.com/vulnerabilities/9554nvdThird Party Advisory
- wordpress.org/plugins/the-events-calendar/nvdRelease Notes
News mentions
0No linked articles in our index yet.