CVE-2024-10186 | Event Post Plugin up to 5.9.6 on WordPress Shortcode events_cal cross site scripting

Posted by Angelo Barbosa | Nov 6, 2024 | CVE

A vulnerability was found in Event Post Plugin up to 5.9.6 on WordPress and classified as problematic. This issue affects the function events_cal of the component Shortcode Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-10186. The attack may be initiated remotely. There is no exploit available.

CVE-2024-10186 | Event Post Plugin up to 5.9.6 on WordPress Shortcode events_cal cross site scripting

Related Posts

CVE-2024-39384 | Adobe Premiere Pro AVI File Parser out-of-bounds write (ZDI-24-1201)

CVE-2024-8379 | Cost Calculator Builder Plugin up to 3.2.28 on WordPress sql injection

CVE-2023-31349 | AMD μProf Tool prior 3.4.494 Installation default permission

CVE-2024-20749 | Adobe Acrobat 2020 out-of-bounds (apsb24-07)