| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-4021 | Modern Events Calendar lite < 7.1.0 - Authenticated (Admin+) Stored Cross-Site Scripting | webnus/ | Modern Events Calendar Lite | Medium | 4.4 | 2023-10-20 07:29:40 | Deep Dive |
| CVE-2023-43658 | Improper escaping of user input in discourse-calendar | discourse | discourse-calendar | High | 8.0 | 2023-10-16 21:28:57 | Deep Dive |
| CVE-2023-4620 | Booking Calendar < 9.7.3.1 - Unauthenticated Stored XSS | Unknown | Booking Calendar | 中危 | - | 2023-10-16 08:32:46 | Deep Dive |
| CVE-2023-45273 | WordPress Stout Google Calendar Plugin <= 1.2.3 is vulnerable to Cross Site Request Forgery (CSRF) | Matt McKenny | Stout Google Calendar | Medium | 4.3 | 2023-10-16 08:18:48 | Deep Dive |
| CVE-2023-40556 | WordPress Schedule Posts Calendar Plugin <= 5.2 is vulnerable to Cross Site Request Forgery (CSRF) | Greg Ross | Schedule Posts Calendar | Medium | 4.3 | 2023-10-06 05:30:29 | Deep Dive |
| CVE-2023-4423 | WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce <= 3.1.37.1 - Authenticated (Admin+) Stored Cross-Site Scripting | wpeventmanager | WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce | Medium | 4.4 | 2023-09-27 03:03:01 | Deep Dive |
| CVE-2023-40560 | WordPress Schedule Posts Calendar Plugin <= 5.2 is vulnerable to Cross Site Scripting (XSS) | Greg Ross | Schedule Posts Calendar | Medium | 5.9 | 2023-09-06 08:08:05 | Deep Dive |
| CVE-2023-39992 | WordPress Online Booking & Scheduling Calendar for WordPress by vcita Plugin <= 4.3.2 is vulnerable to Cross Site Scripting (XSS) | vCita.com | Online Booking & Scheduling Calendar for WordPress by vcita | High | 7.1 | 2023-09-04 10:33:19 | Deep Dive |
| CVE-2023-32511 | WordPress Booking Ultra Pro Plugin <= 1.1.8 is vulnerable to Cross Site Scripting (XSS) | Booking Ultra Pro | Booking Ultra Pro Appointments Booking Calendar Plugin | High | 7.1 | 2023-08-24 11:15:59 | Deep Dive |
| CVE-2023-32236 | WordPress Booking Ultra Pro Plugin <= 1.1.8 is vulnerable to Cross Site Scripting (XSS) | Booking Ultra Pro | Booking Ultra Pro Appointments Booking Calendar Plugin | High | 7.1 | 2023-08-23 13:04:56 | Deep Dive |
| CVE-2023-39939 | LuxSoft LuxCal Web Calendar SQL注入漏洞 | LuxSoft | LuxCal Web Calendar | 超危 | - | 2023-08-21 08:14:24 | Deep Dive |
| CVE-2023-39543 | LuxSoft LuxCal Web Calendar 跨站脚本漏洞 | LuxSoft | LuxCal Web Calendar | 中危 | - | 2023-08-21 08:14:06 | Deep Dive |
| CVE-2023-32122 | WordPress Spiffy Calendar Plugin <= 4.9.3 is vulnerable to Cross Site Scripting (XSS) | Spiffy Plugins | Spiffy Calendar | Medium | 5.8 | 2023-08-18 15:17:09 | Deep Dive |
| CVE-2023-4110 | PHP Jabbers Availability Booking Calendar index.php cross site scripting | PHP Jabbers | Availability Booking Calendar | Low | 3.5 | 2023-08-03 02:31:03 | Deep Dive |
| CVE-2023-37970 | WordPress MF Gig Calendar Plugin <= 1.2 is vulnerable to Cross Site Scripting (XSS) | Matthew Fries | MF Gig Calendar | Medium | 6.5 | 2023-07-27 14:30:03 | Deep Dive |
| CVE-2023-3970 | GZ Scripts Availability Booking Calendar PHP Image cross site scripting | GZ Scripts | Availability Booking Calendar PHP | Low | 3.5 | 2023-07-27 12:00:06 | Deep Dive |
| CVE-2023-3969 | GZ Scripts Availability Booking Calendar PHP HTTP POST Request index.php cross site scripting | GZ Scripts | Availability Booking Calendar PHP | Low | 3.5 | 2023-07-27 11:31:04 | Deep Dive |
| CVE-2023-36384 | WordPress Booking Calendar Contact Form Plugin <= 1.2.40 is vulnerable to Cross Site Scripting (XSS) | CodePeople | Booking Calendar Contact Form | High | 7.1 | 2023-07-18 14:17:40 | Deep Dive |
| CVE-2023-3558 | GZ Scripts Event Booking Calendar load.php cross site scripting | GZ Scripts | Event Booking Calendar | Low | 3.5 | 2023-07-08 14:00:05 | Deep Dive |
| CVE-2023-3544 | GZ Scripts Time Slot Booking Calendar PHP load.php cross site scripting | GZ Scripts | Time Slot Booking Calendar PHP | Low | 3.5 | 2023-07-07 17:00:05 | Deep Dive |