Vulnerabilities > Motopress > Timetable AND Event Schedule > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2021-09-13	CVE-2021-24724	Cross-site Scripting vulnerability in Motopress Timetable and Event Schedule The Timetable and Event Schedule by MotoPress WordPress plugin before 2.3.19 does not sanitise some of its parameters, which could allow low privilege users such as author to perform XSS attacks against frontend and backend users when viewing the related event/s network motopress CWE-79	3.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.