Unrated severityNVD Advisory· Published Jun 4, 2024· Updated Mar 18, 2025
The Events Calendar < 6.4.0.1 - Reflected XSS
CVE-2024-4180
Description
The Events Calendar WordPress plugin before 6.4.0.1 does not properly sanitize user-submitted content when rendering some views via AJAX.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <6.4.0.1
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/b2a92316-e404-4a5e-8426-f88df6e87550/mitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.