Show filters
13 Total Results
Displaying 11-13 of 13
Sort by:
Attacker Value
Unknown
CVE-2022-25599
Disclosure Date: February 10, 2022 (last updated February 23, 2025)
Cross-Site Request Forgery (CSRF) vulnerability leading to event deletion was discovered in Spiffy Calendar WordPress plugin (versions <= 4.9.0).
0
Attacker Value
Unknown
CVE-2022-29434
Disclosure Date: February 10, 2022 (last updated February 23, 2025)
Insecure Direct Object References (IDOR) vulnerability in Spiffy Plugins Spiffy Calendar <= 4.9.0 at WordPress allows an attacker to edit or delete events.
0
Attacker Value
Unknown
CVE-2017-9420
Disclosure Date: June 05, 2017 (last updated November 26, 2024)
Cross site scripting (XSS) vulnerability in the Spiffy Calendar plugin before 3.3.0 for WordPress allows remote attackers to inject arbitrary JavaScript via the yr parameter.
0
