CVE-2022-0364

The Modern Events Calendar Lite WordPress plugin before 6.4.0 does not sanitize and escape some of the Hourly Schedule parameters which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks
References
Configurations

Configuration 1

cpe:2.3:a:webnus:modern_events_calendar_lite:*:*:*:*:*:wordpress:*:*

Information

Published : 2022-03-21 07:15

Updated : 2022-03-28 06:48


NVD link : CVE-2022-0364

Mitre link : CVE-2022-0364

Products Affected
No products.
CWE