CVE-2012-4242

Currently unrated

Key Information:

Vendor: Wordpress
Status: Mf Gig Calendar
Vendor: CVE Published:; 1 October 2012

Summary

Cross-site scripting (XSS) vulnerability in the MF Gig Calendar plugin 0.9.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the query string to the calendar page.

References

http://www.securityfocus.com/bid/55622

vdb-entryx_refsource_BID

http://www.reactionpenetrationtesting.co.uk/mf-gig-calend...

x_refsource_MISC

Timeline

Vulnerability published
Oct 1, 2012
Vulnerability Reserved
Aug 9, 2012