Vulnerabilities (CVE)

Filtered by vendor Event Geek Project Subscribe
Filtered by product Event Geek
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-24480 1 Event Geek Project 1 Event Geek 2024-02-28 3.5 LOW 4.8 MEDIUM
The Event Geek WordPress plugin through 2.5.2 does not sanitise or escape its "Use your own " setting before outputting it in the page, leading to an authenticated (admin+) stored Cross-Site Scripting issue