Vulnerabilities > WEB Dorado > Event Calendar WD

DATE CVE VULNERABILITY TITLE RISK
2019-01-09 CVE-2018-16164 Cross-site Scripting vulnerability in Web-Dorado Event Calendar WD
Cross-site scripting vulnerability in Event Calendar WD version 1.1.21 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
network
web-dorado CWE-79
3.5
2017-07-07 CVE-2017-2224 Cross-site Scripting vulnerability in Web-Dorado Event Calendar WD
Cross-site scripting vulnerability in Event Calendar WD prior to version 1.0.94 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
web-dorado CWE-79
4.3