|2019-05-04||All-in-One Event Calendar <= 2.5.38 - Cross-Site Scripting (XSS)||fixed in version 2.5.39|
|2014-09-27||All-in-One Event Calendar Plugin 1.4 & 1.5 Multiple XSS||fixed in version 1.8.2|
|2014-08-01||All-in-One Event Calendar 1.9 - wp-admin/post-new.php Multiple Parameter...||fixed in version 1.10|
|2014-08-01||All-in-One Event Calendar 1.9 - index.php Multiple Parameter SQL Injection||fixed in version 1.10|
Is this your plugin?
We offer WordPress plugin security testing to help identify security vulnerabilities within your plugin. Please note that this is a paid service. If you are interested in talking about having your plugin tested by WordPress security experts, get in touch.