Vulnerabilidades em Spiffy Plugins
15 resultadosCVE-2024-38692HIGHWordPress spiffy-calendar plugin <= 4.9.11 - SQL Injection vulnerabilityEPSS 0.7%CVE-2022-29434MEDIUMWordPress Spiffy Calendar plugin <= 4.9.0 - Edit/Delete event via IDOR vulnerabilityEPSS 0.7%CVE-2022-46859HIGHWordPress Spiffy Calendar Plugin <= 4.9.1 is vulnerable to SQL InjectionEPSS 0.5%CVE-2024-43969HIGHWordPress Spiffy Calendar plugin <= 4.9.12 - SQL Injection vulnerabilityEPSS 0.4%CVE-2024-30427MEDIUMWordPress Spiffy Calendar plugin <= 4.9.7 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2023-49745MEDIUMWordPress Spiffy Calendar Plugin <= 4.9.5 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2022-25599MEDIUMWordPress Spiffy Calendar plugin <= 4.9.0 - Event deletion via Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.4%CVE-2023-32122MEDIUMWordPress Spiffy Calendar Plugin <= 4.9.3 is vulnerable to Cross Site Scripting (XSS)EPSS 0.3%CVE-2024-45458HIGHWordPress Spiffy Calendar plugin <= 4.9.13 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2024-30528MEDIUMWordPress Spiffy Calendar plugin <= 4.9.10 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-49695MEDIUMWordPress WP Flow Plus plugin <= 5.2.3 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2024-35651MEDIUMWordPress WP Flow Plus plugin <= 5.2.2 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2024-45457MEDIUMWordPress Spiffy Calendar plugin <= 4.9.13 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2025-58625MEDIUMWordPress WP Flow Plus Plugin <= 5.2.5 - Cross Site Scripting (XSS) VulnerabilityEPSS 0.2%CVE-2025-68523MEDIUMWordPress Spiffy Calendar plugin <= 5.0.7 - Broken Access Control vulnerabilityEPSS 0.2%