Event Calendar < 1.1.51 - Reflected Cross-Site Scripting
CVE-2021-25024
6.1MEDIUM
What is CVE-2021-25024?
The EventCalendar WordPress plugin before 1.1.51 does not escape some user input before outputting it back in attributes, leading to Reflected Cross-SIte Scripting issues
Affected Version(s)
EventCalendar 1.1.51