Description

WordPress Plugin Calendar is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Calendar version 1.3.10 is vulnerable; prior versions may also be affected.

Remediation

Disable the plugin until a fix is available

References

https://wordpress.org/plugins/calendar/#description

Related Vulnerabilities

Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-14998)

Oracle JRE CVE-2013-2459 Vulnerability (CVE-2013-2459)

Dotclear Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-5689)

Vanilla Forums Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-1000432)

WordPress Plugin Relevanssi Premium-A Better Search Cross-Site Scripting (1.14.8)

Severity

High

Tags

Missing Update