Cross-site scripting (XSS) vulnerability in the MF Gig Calendar plugin 0.9.2 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the query string to the calendar page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mf_gig_calendar_project mf_gig_calendar 0.9.2 |