Unrated severityNVD Advisory· Published Jan 17, 2022· Updated Aug 3, 2024
Event Calendar < 1.1.51 - Reflected Cross-Site Scripting
CVE-2021-25024
Description
The EventCalendar WordPress plugin before 1.1.51 does not escape some user input before outputting it back in attributes, leading to Reflected Cross-SIte Scripting issues
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <1.1.51
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/08864b76-d898-4dfe-970d-d7cc1b1115a7mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.