Vulnerability history

WordPress The Events Calendar plugin 6.15.1.1 - 6.15.9 - Unauthenticated SQL Injection via s vulnerability

Sysinfo Key Incorrect Comparison to Unauthenticated Sensitive Information Exposure vulnerability

Missing Authorization to Authenticated (Subscriber+) Draft Event Title/QR Code Exposure vulnerability

Missing Authorization to Unauthenticated Password-Protected Information Disclosure vulnerability

Unauthenticated SQL Injection vulnerability

Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting vulnerability

Broken Access Control Vulnerability

Admin+ Stored XSS vulnerability

Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Unauthenticated Password Protected Event Disclosure vulnerability

Cross Site Request Forgery (CSRF) vulnerability

Unauthenticated Stored Cross-Site Scripting vulnerability

Unauthenticated SQL Injection vulnerability

Cross Site Request Forgery (CSRF) vulnerability

Authenticated (Contributor+) Arbitrary Events Access vulnerability

Reflected XSS vulnerability

Cross Site Request Forgery (CSRF) vulnerability

Unauthenticated Sensitive Information Exposure vulnerability

Information Disclosure vulnerability

Broken Access Control vulnerability

Reflected Cross Site Scripting (XSS) vulnerability

Sensitive Information Disclosure vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Open Redirection

Reflected Cross Site Scripting