cleantalk
Vulnerabilities and Security Researches

My Calendar, CVE-2012-6527

CVE, Research URL

CVE-2012-6527

Home page URL

Security reports for My Calendar

Application

My Calendar

Published on
Jan 31, 2013
Research Description
Cross-site scripting (XSS) vulnerability in the My Calendar plugin before 1.10.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
Affected versions
max 3.3.25.
Status
vulnerable
Previous vulnerability researches
My Calendar (CVE-2025-67592) , Dec 11, 2025
My Calendar (CVE-2012-6527) , Jun 07, 2024
My Calendar (CVE-2021-24927) , Jun 07, 2024
My Calendar (CVE-2019-15713) , Jun 07, 2024
My Calendar (CVE-2022-47427) , Jun 07, 2024
New vulnerability
VI: Include Post By (CVE-2026-5717) , Apr 17, 2026
Responsive Accordion Slider (CVE-2026-0635) , Apr 17, 2026
Petje.af (CVE-2026-4002) , Apr 17, 2026
LinkedIn SC (CVE-2026-0812) , Apr 17, 2026
Coachific Shortcode (CVE-2026-4005) , Apr 17, 2026