CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Spiffyplugins: >> Spiffy Calendar >> 4.9.11 Security Vulnerabilities

CVE-2024-45457

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Spiffy Plugins Spiffy Calendar allows Stored XSS.This issue affects Spiffy Calendar: from n/a through 4.9.13.

CVSS Score

6.5

EPSS Score

0.001

Published

2024-09-15

CVE-2024-45458

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Spiffy Plugins Spiffy Calendar allows Reflected XSS.This issue affects Spiffy Calendar: from n/a through 4.9.13.

CVSS Score

7.1

EPSS Score

0.001

Published

2024-09-15

CVE-2024-38692

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Spiffy Plugins Spiffy Calendar allows SQL Injection.This issue affects Spiffy Calendar: from n/a through 4.9.11.

CVSS Score

7.6

EPSS Score

0.043

Published

2024-07-22

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved