WordPress vulnerability database
Bounty Leaderboard API Enable Protection
Report
Spiffy Calendar Logo

Spiffy Calendar

Plugin

View Changelog
No VDP
Report

Developer

Spiffy Plugins

Current version

4.9.2

Installations

3 000

Last updated

1 month ago

5 known vulnerabilities

Event deletion via CrossSite Request Forgery (CSRF) vulnerability <= 4.9.0

5.4

10.02.2022

Authenticated Reflected CrossSite Scripting (XSS) vulnerability <= 4.9.0

4.7

10.02.2022

Admin+ Persistent CrossSite Scripting (XSS) vulnerability <= 4.9.0

3.4

10.02.2022

Multiple Authenticated Reflected CrossSite Scripting (XSS) vulnerabilities <= 4.9.0

4.7

10.02.2022

Edit/Delete event via IDOR vulnerability <= 4.9.0

6.3

10.02.2022

Solutions

WordPress security Vulnerability database Vulnerability API Bug bounty program Plugin auditing

WordPress security

Patchstack for WordPress Pricing & features For agencies For hosts For pluginsNEW Documentation

Patchstack

About us Careers Media Kit Articles & insight Whitepaper 2021

Social

DPA Privacy Policy Terms & Conditions © 2023 Patchstack

Solutions

WordPress security Vulnerability database Vulnerability API Bug bounty program Plugin auditing

WordPress security

Patchstack for WordPress Pricing & features For agencies For hosts For pluginsNEW Documentation

Patchstack

About us Careers Media Kit Articles & insight Whitepaper 2021

Social

Let us know if we have missed a vulnerability reported elsewhere

Report arrow right Close

Thank you for contributing!

Successfully submit vulnerabilities and receive an invite to our Alliance platform.

Learn more arrow right Close