Lucene search
PRIOn knowledge basePRION:CVE-2021-34667HistoryAug 16, 2021 - 7:15 p.m.
Cross site scripting
2021-08-1619:15:00
PRIOn knowledge base
www.prio-n.com
4
0.001 Low
EPSS
Percentile
31.9%
The Calendar_plugin WordPress plugin is vulnerable to Reflected Cross-Site Scripting due to the use of $_SERVER['PHP_SELF'] in the ~/calendar.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.0.
| CPE | Name | Operator | Version |
|---|---|---|---|
| calendar_plugin | le | 1.0 |
Related
cve
cve
CVE-2021-34667
2021-08-16 19:15:15
patchstack
patchstack
wpvulndb
wpvulndb
Calendar_plugin <= 1.0 - Reflected Cross-Site Scripting
2021-08-13 00:00:00
cvelist
cvelist
CVE-2021-34667 Calendar_plugin <= 1.0 Reflected Cross-Site Scripting
2021-08-13 00:00:00
nvd
nvd
CVE-2021-34667
2021-08-16 19:15:15