Theholidaycalendar Holiday Calendar — known CVE vulnerabilities
Every CVE whose affected-product data names Theholidaycalendar Holiday Calendar, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2015-9270 — CVSS 6.1 (medium): XSS exists in the the-holiday-calendar plugin before 1.11.3 for WordPress via the thc-month parameter.