Xtendify Simple Calendar — known CVE vulnerabilities
Every CVE whose affected-product data names Xtendify Simple Calendar, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-8549 — CVSS 6.1 (medium): The Simple Calendar – Google Calendar Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of…
CVE-2023-46189 — CVSS 4.3 (medium): Cross-Site Request Forgery (CSRF) vulnerability in Simple Calendar – Google Calendar Plugin <= 3.2.5 versions.