|2018-10-30||Calendar <= 1.3.10 - Authenticated Stored Cross-Site Scripting (XSS)||fixed in version 1.3.11|
|2016-11-08||Calendar <= 1.3.7 - Cross-Site Scripting (XSS)||fixed in version 1.3.8|
|2014-08-01||Calendar <= 1.3.2 - Entry Addition Cross-Site Request Forgery (CSRF)||fixed in version 1.3.3|
Is this your plugin?
We offer WordPress plugin security testing to help identify security vulnerabilities within your plugin. Please note that this is a paid service. If you are interested in talking about having your plugin tested by WordPress security experts, get in touch.