A vulnerability, which was classified as critical, has been found in Availability Calendar Plugin up to 1.2.0 on WordPress (Calendar Software). This issue affects some unknown processing of the component Shortcode Attribute Handler. Upgrading to version 1.2.1 eliminates this vulnerability.
Availability Calendar Plugin up to 1.2.0 on WordPress Shortcode Attribute category sql injection
- Virtual Patching
- September 20, 2021
- 3:04 pm
CVE-2023-0556 : CONTENTSTUDIO PLUGIN UP TO 1.2.5 ON WORDPRESS CSTU_GET_METADATA AUTHORIZATION
Description The ContentStudio plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on several functions
CVE-2022-48108 : D-LINK DIR-878 1.30B08 SUBNETMASK COMMAND INJECTION
Description D-Link DIR_878_FW1.30B08 was discovered to contain a command injection vulnerability via the component /SetNetworkSettings/SubnetMask. This vulnerability allows attackers to
CVE-2022-47767 : SOLAR-LOG GATEWAY UP TO 4.2.7/5.1.1 SLCORE BACKDOOR
Description A backdoor in Solar-Log Gateway products allows remote access via web panel gaining super administration privileges to the attacker.