Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Spiffy Plugins Spiffy Calendar allows Stored XSS.This issue affects Spiffy Calendar: from n/a through 4.9.5.
References
Configurations
History
18 Dec 2023, 18:40
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-12-14 15:15
Updated : 2024-02-28 20:54
NVD link : CVE-2023-49745
Mitre link : CVE-2023-49745
CVE.ORG link : CVE-2023-49745
JSON object : View
Products Affected
spiffyplugins
- spiffy_calendar
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')