Vulnerabilities > CVE-2021-25046 - Unspecified vulnerability in Webnus Modern Events Calendar Lite

047910
CVSS 5.4 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
NONE
network
low complexity
webnus

Summary

The Modern Events Calendar Lite WordPress plugin before 6.2.0 alloed any logged-in user, even a subscriber user, may add a category whose parameters are incorrectly escaped in the admin panel, leading to stored XSS.

Vulnerable Configurations

Part Description Count
Application
Webnus
122