4.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.8%
Cross-Site Request Forgery (CSRF) vulnerability leading to event deletion was discovered in Spiffy Calendar WordPress plugin (versions <= 4.9.0).
patchstack.com/database/vulnerability/spiffy-calendar/wordpress-spiffy-calendar-plugin-4-9-0-event-deletion-via-cross-site-request-forgery-csrf-vulnerability
wordpress.org/plugins/spiffy-calendar/