Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 478 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-8700 Event Calendar <= 1.0.4 - Unauthenticated Arbitrary Calendar Deletion UnknownEvent Calendar--2025-05-15 20:07:18 Deep Dive
CVE-2024-8701 Event Calendar <= 1.0.4 - Admin+ Stored XSS Unknownevents-calendar--2025-05-15 20:07:18 Deep Dive
CVE-2024-8493 The Events Calendar < 6.6.4 - Admin+ Stored XSS UnknownThe Events Calendar--2025-05-15 20:07:16 Deep Dive
CVE-2025-3769 Latepoint <= 5.1.92 - Unauthenticated Insecure Direct Object Reference latepointLatePoint – Calendar Booking Plugin for Appointments and Events Medium 5.3 2025-05-14 11:12:26 Deep Dive
CVE-2025-3419 Event Manager, Events Calendar, Tickets, Registrations – Eventin <= 4.0.26 - Unauthenticated Arbitrary File Read arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) High 7.5 2025-05-08 05:22:51 Deep Dive
CVE-2025-47542 WordPress Simple calendar for Elementor plugin <= 1.6.5 - Cross Site Request Forgery (CSRF) Vulnerability MichaelSimple calendar for Elementor Medium 4.3 2025-05-07 14:20:15 Deep Dive
CVE-2025-46528 WordPress Availability Calendar plugin <= 0.2.4 - Cross Site Request Forgery (CSRF) Vulnerability SteveAvailability Calendar High 7.1 2025-04-24 16:08:59 Deep Dive
CVE-2025-46510 WordPress Contact Form 7 Calendar plugin <= 3.0.1 - CSRF to Stored XSS vulnerability harrysudanaContact Form 7 Calendar High 7.1 2025-04-24 16:08:55 Deep Dive
CVE-2025-46249 WordPress Simple calendar for Elementor plugin <= 1.6.4 - Cross Site Request Forgery (CSRF) Vulnerability MichaelSimple calendar for Elementor Medium 4.3 2025-04-22 09:53:32 Deep Dive
CVE-2025-46247 WordPress Appointment Booking Calendar plugin <= 1.3.92 - Broken Access Control Vulnerability codepeopleAppointment Booking Calendar Medium 5.3 2025-04-22 09:53:32 Deep Dive
CVE-2025-46241 WordPress Appointment Booking Calendar plugin <= 1.3.92 - CSRF to SQL Injection vulnerability codepeopleAppointment Booking Calendar High 8.2 2025-04-22 09:53:28 Deep Dive
CVE-2025-32597 WordPress WordPress Events Calendar Plugin – connectDaily plugin <= 1.5.4 - CSRF to Cross-Site Scripting vulnerability George SextonWordPress Events Calendar Plugin – connectDaily High 7.1 2025-04-09 16:09:30 Deep Dive
CVE-2025-32238 WordPress Online Booking & Scheduling Calendar for WordPress by vcita plugin <= 4.5.5 - Sensitive Data Exposure vulnerability vcitaOnline Booking & Scheduling Calendar for WordPress by vcita Medium 4.3 2025-04-04 15:59:22 Deep Dive
CVE-2025-32174 WordPress Tockify Events Calendar plugin <= 2.2.13 - Cross Site Scripting (XSS) vulnerability TockifyTockify Events Calendar Medium 6.5 2025-04-04 15:58:54 Deep Dive
CVE-2025-31381 WordPress Booking Calendar and Notification plugin <= 4.0.3 - Broken Authentication vulnerability shiptrackBooking Calendar and Notification Medium 6.5 2025-04-04 13:44:44 Deep Dive
CVE-2025-31403 WordPress Booking Calendar and Notification plugin <= 4.0.3 - SQL Injection vulnerability shiptrackBooking Calendar and Notification Critical 9.3 2025-04-04 13:34:43 Deep Dive
CVE-2025-31462 WordPress CGM Event Calendar plugin <= 0.8.5 - Cross Site Scripting (XSS) Vulnerability rzfarrellCGM Event Calendar High 7.1 2025-04-01 20:58:11 Deep Dive
CVE-2025-31589 WordPress Ethiopian Calendar plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability Kibru DemekeEthiopian Calendar Medium 6.5 2025-03-31 12:55:28 Deep Dive
CVE-2025-31572 WordPress Multi Days Events and Multi Events in One Day Calendar plugin <= 1.1.3 - Cross Site Request Forgery (CSRF) vulnerability v20202020Multi Days Events and Multi Events in One Day Calendar Medium 4.3 2025-03-31 12:55:21 Deep Dive
CVE-2025-2578 Booking for Appointments and Events Calendar – Amelia <= 1.2.19 - Unauthenticated Full Path Disclosure ameliabookingBooking for Appointments and Events Calendar – Amelia Medium 5.3 2025-03-28 07:33:04 Deep Dive