Vulnerabilities and security researches forevents-search-addon-for-the-events-calendar events-search-addon-for-the-events-calendar
Direction: ascendingJun 07, 2024
Events Search For The Events Calendar # 064f04a5db00947ea83e3596cf05df5e81a0431e
- CVE, Research URL
- Application
- Date
- Apr 06, 2022
- Research Description
- Events Search For The Events Calendar [events-search-addon-for-the-events-calendar] < 1.2.1 WordPress The Events Calendar Search Addon plugin <= 1.1.3 - Arbitrary Plugin Installation vulnerability Arbitrary Plugin Installation vulnerability discovered by Jerome Bruandet (NinTechNet) in WordPress The Events Calendar Search Addon plugin (versions <= 1.1.3).
- Affected versions
-
max 1.2.1.
- Status
-
vulnerable
Jun 16, 2026
Events Search For The Events Calendar # b62a26a6-cea0-46a7-b577-ba8d476ec1b5
- CVE, Research URL
- Application
- Date
- -
- Research Description
- Events Search For The Events Calendar [events-search-addon-for-the-events-calendar] < 1.2 Multiple Plugins from Cool Plugins - Subscriber+ Arbitrary Plugin Installation & Activation Multiple plugins from the Cool Plugins vendor are missing capability and proper CSRF check in the cool_plugins_install and cool_plugins_activate AJAX actions, available to any authenticated users, allowing them to install and activate arbitrary plugins via an archive hosted on a remote server they control
- Affected versions
-
max 1.2.
- Status
-
vulnerable
Events Search For The Events Calendar # 499fc5b5931097622c99d4db054b7adfe26218e8
- CVE, Research URL
- Application
- Date
- Apr 06, 2022
- Research Description
- Events Search For The Events Calendar [events-search-addon-for-the-events-calendar] < 1.2.1 WordPress The Events Calendar Search Addon plugin <= 1.1.3 - Arbitrary Plugin Activation vulnerability Arbitrary Plugin Activation vulnerability discovered by Jerome Bruandet (NinTechNet) in WordPress The Events Calendar Search Addon plugin (versions <= 1.1.3).
- Affected versions
-
max 1.2.1.
- Status
-
vulnerable