Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total3

Critical0

High1

Medium2

Search Severity Year Type Sort Order

Reset

Showing 1-3 of 3 records

Threat Entry Updated 2025-06-04

CVE-2024-8700 - Event Calendar Plugin

The Event Calendar WordPress plugin through 1.0.4 does not check for authorization on delete actions, allowing unauthenticated users to delete arbitrary calendars.

PLUGIN Event Calendar

CVE-2024-8700

HIGH CVSS 7.5 2025-05-15

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-11-21

CVE-2022-36390 - Event Calendar Plugin

Authenticated (subscriber+) Reflected Cross-Site Scripting (XSS) vulnerability in Totalsoft Event Calendar – Calendar plugin

PLUGIN Event Calendar

CVE-2022-36390

MEDIUM CVSS 4.1 2022-09-21

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-11-21

CVE-2022-38067 - Event Calendar Plugin

Unauthenticated Event Deletion vulnerability in Totalsoft Event Calendar – Calendar plugin

PLUGIN Event Calendar

CVE-2022-38067

MEDIUM CVSS 6.5 2022-09-09

Risk Score

Open Full Technical Breakdown

Blog

"Prevention is cheaper than a breach"

Threat Database

CVE-2024-8700 - Event Calendar Plugin

CVE-2022-36390 - Event Calendar Plugin

CVE-2022-38067 - Event Calendar Plugin

Company Links

Contact Us