ThreatPress

WordPress Vulnerabilities Database

Back

WordPress The Events Calendar Plugin <= 4.1.1 - Open Redirection

Product
The Events Calendar
Description
This plugin is prone to an open redirection vulnerability in the "tribe-bar-view" parameter.
Solution
Update the plugin.
Classification
Type Open Redirection
OWASP Top 10 A10: Unvalidated Redirects and Forwards
References
Github
CVE
Name CVE-N/A
Versions
Affected In <= 4.1.1
Fixed In 4.1.1.1
Disclosure date
2016-04-25
Credits
Paul Mynarsky