Every CVE whose affected-product data names Joedolson My Calendar, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2023-6360 — CVSS 8.6 (high): The 'My Calendar' WordPress Plugin, version < 3.4.22 is affected by an unauthenticated SQL injection vulnerability in the 'from' and 'to'…
CVE-2024-1274 — CVSS 5.4 (medium): The My Calendar WordPress plugin before 3.4.24 does not sanitise and escape some parameters, which could allow users with a role as low as…
CVE-2012-6527 — CVSS 2.6 (low): Cross-site scripting (XSS) vulnerability in the My Calendar plugin before 1.10.2 for WordPress allows remote attackers to inject arbitrary…