📦

spider_event_calendar

Vendor: web-dorado

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 17 Total Indexed

Avg. EPSS 1.22% Exploit Prob.

Latest CVE CVE-2017-7719 Apr 12

Security Vulnerability Index

Page 1 / 2

9.8 CVSS

CVE-2017-7719

SQL injection in the Spider Event Calendar (aka spider-event-calendar) plugin before 1.5.52 for WordPress is exploitable with the order_by parameter to calendar_functions.php or widget_Theme_functions.php, related to front_end/frontend_functions.php.

EPSS: 1.22%

Severity: CRITICAL

Apr 12, 2017

Displaying 1 of 17 Total Entries

1 2

Total 2 Sections