CVE-2024-10186 | Event Post Plugin up to 5.9.6 on WordPress Shortcode events_cal cross site scripting

Posted by Angelo Barbosa | Nov 6, 2024 | CVE

A vulnerability was found in Event Post Plugin up to 5.9.6 on WordPress and classified as problematic. This issue affects the function events_cal of the component Shortcode Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-10186. The attack may be initiated remotely. There is no exploit available.

CVE-2024-10186 | Event Post Plugin up to 5.9.6 on WordPress Shortcode events_cal cross site scripting

Related Posts

CVE-2024-1647 | Pyhtml2pdf 0.0.6 cross site scripting

CVE-2024-6135 | zephyrproject-rtos Zephyr up to 3.6 BT heap-based overflow (GHSA-xcr5-5g98-mchp)

CVE-2023-5961 | Moxa ioLogik E1200 up to 3.3 cross-site request forgery

CVE-2024-47801 | Sharp/Toshiba Tec MFP URL cross site scripting