CVE-2012-6527 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	2.6 UNKNOWN	NETWORK	HIGH		AV:N/AC:H/Au:N/C:N/I:P/A:N
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 56%

Vendor	Product	Version
joedolson	my_calendar	𝑥 ≤ 1.10.1
joedolson	my_calendar	1.1.0
joedolson	my_calendar	1.2.0
joedolson	my_calendar	1.2.1
joedolson	my_calendar	1.4.0
joedolson	my_calendar	1.4.1
joedolson	my_calendar	1.4.2
joedolson	my_calendar	1.4.3
joedolson	my_calendar	1.4.4
joedolson	my_calendar	1.4.5
joedolson	my_calendar	1.4.6
joedolson	my_calendar	1.4.7
joedolson	my_calendar	1.4.8
joedolson	my_calendar	1.4.9
joedolson	my_calendar	1.4.10
joedolson	my_calendar	1.5.0
joedolson	my_calendar	1.5.1
joedolson	my_calendar	1.5.2
joedolson	my_calendar	1.5.3
joedolson	my_calendar	1.5.4
joedolson	my_calendar	1.6.0
joedolson	my_calendar	1.6.1
joedolson	my_calendar	1.6.2
joedolson	my_calendar	1.6.3
joedolson	my_calendar	1.7.0
joedolson	my_calendar	1.7.1
joedolson	my_calendar	1.7.2
joedolson	my_calendar	1.7.3
joedolson	my_calendar	1.7.4
joedolson	my_calendar	1.7.6
joedolson	my_calendar	1.7.7
joedolson	my_calendar	1.7.8
joedolson	my_calendar	1.8.0
joedolson	my_calendar	1.8.1
joedolson	my_calendar	1.8.2
joedolson	my_calendar	1.8.3
joedolson	my_calendar	1.8.4
joedolson	my_calendar	1.8.5
joedolson	my_calendar	1.8.6
joedolson	my_calendar	1.8.7
joedolson	my_calendar	1.8.8
joedolson	my_calendar	1.8.9
joedolson	my_calendar	1.9.0
joedolson	my_calendar	1.9.1
joedolson	my_calendar	1.9.2
joedolson	my_calendar	1.9.3
joedolson	my_calendar	1.9.4
joedolson	my_calendar	1.9.5
joedolson	my_calendar	1.9.6
joedolson	my_calendar	1.9.7
joedolson	my_calendar	1.9.8
joedolson	my_calendar	1.10.0
wordpress	wordpress	-

𝑥

= Vulnerable software versions

Known Exploits!

Common Weakness Enumeration

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

References

http://plugins.trac.wordpress.org/changeset/490070/my-calendar

http://secunia.com/advisories/47579

http://wordpress.org/extend/plugins/my-calendar/changelog/

http://www.securityfocus.com/bid/51539

https://exchange.xforce.ibmcloud.com/vulnerabilities/72454

http://plugins.trac.wordpress.org/changeset/490070/my-calendar

http://secunia.com/advisories/47579

http://wordpress.org/extend/plugins/my-calendar/changelog/

http://www.securityfocus.com/bid/51539

https://exchange.xforce.ibmcloud.com/vulnerabilities/72454