Auth. Stored Cross-Site Scripting (XSS) vulnerability discovered by Hoang Van Hiep (sk4rl1ghT) in the WordPress Community Events plugin (versions <= 1.4.8).
Update the WordPress Community Events plugin to the latest available version (at least 1.4.9).