My Calendar 1.10.2 - XSS in PATH_INFO Parameter

Affects Plugin

fixed in version 1.10.5

References

CVE 2012-6527
SECURITYFOCUS 51539

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Submitter pvdl
Views 4176
Verified No
WPVDB ID 7627

Timeline

Publicly Published 2014-09-29 (about 5 years ago)
Added 2014-09-29 (about 5 years ago)
Last Updated 2019-10-21 (about 2 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin