Find out about vulnerable plugins in your websites for free.
Edit/Delete event via IDOR vulnerability discovered in WordPress Spiffy Calendar plugin (versions <= 4.9.0) by Ex.Mi (Patchstack).
Update the WordPress Spiffy Calendar plugin to the latest available version (at least 4.9.1).
Event deletion via CrossSite Request Forgery (CSRF) vulnerability
5.4
10.02.2022
Authenticated Reflected CrossSite Scripting (XSS) vulnerability
4.7
10.02.2022
Admin+ Persistent CrossSite Scripting (XSS) vulnerability
3.4
10.02.2022
Multiple Authenticated Reflected CrossSite Scripting (XSS) vulnerabilities
4.7
10.02.2022