Medium severity6.5NVD Advisory· Published Mar 27, 2025· Updated Jun 17, 2026
CVE-2025-22497
CVE-2025-22497
Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bramwaas Simple Google Calendar Outlook Events Block Widget simple-google-icalendar-widget allows Stored XSS.This issue affects Simple Google Calendar Outlook Events Block Widget: from n/a through <= 2.5.0.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=2.5.0
- Range: <=2.5.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.