First published: Wed Aug 28 2019(Updated: )
The my-calendar plugin before 3.1.10 for WordPress has XSS.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
My Calendar Project My Calendar | <3.1.10 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-15713 is a vulnerability in the my-calendar plugin before version 3.1.10 for WordPress that allows for cross-site scripting (XSS) attacks.
CVE-2019-15713 has a severity rating of medium, with a CVSS score of 6.1.
The affected software is the my-calendar plugin before version 3.1.10 for WordPress.
To fix CVE-2019-15713, you should update the my-calendar plugin to version 3.1.10 or later.
You can find more information about CVE-2019-15713 on the official WordPress website: https://wordpress.org/plugins/my-calendar/#developers