Vulnerabilities > Embedcalendly

DATE CVE VULNERABILITY TITLE RISK
2023-10-13 CVE-2023-4995 Unspecified vulnerability in Embedcalendly Embed Calendly
The Embed Calendly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'calendly' shortcode in versions up to, and including, 3.6 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
embedcalendly
5.4