Approved changes feed: RSS · Atom

cpe:2.3:a:totalsoft:event_calendar_–_calendar_(wordpress_plugin):*:*:*:*:*:*:*:*

part: a version: * update: *

VendorTotalsoft (68fd05b7-da80-5fea-8e41-4d2312aa159d)
ProductEvent Calendar – Calendar (Wordpress Plugin) (1190f776-9b3a-50d0-aee0-64a4668a3b51)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2022-38067 vulnerable 2026-06-08 05:47:14.519762 WordPress Event Calendar – Calendar plugin <= 1.4.6 - Unauthenticated Event Deletion vulnerability
MEDIUM (6.5)
Unauthenticated Event Deletion vulnerability in Totalsoft Event Calendar – Calendar plugin <= 1.4.6 at WordPress.
Published: 2022-09-09T14:39:55.482Z
Updated: 2026-04-28T16:07:46.692Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-36390 vulnerable 2026-06-08 05:46:07.239725 WordPress Event Calendar – Calendar plugin <= 1.4.6 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability
MEDIUM (4.1)
Authenticated (subscriber+) Reflected Cross-Site Scripting (XSS) vulnerability in Totalsoft Event Calendar – Calendar plugin <= 1.4.6 at WordPress.
Published: 2022-09-21T19:03:45.225Z
Updated: 2026-04-28T16:07:45.893Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.