MidnightBSD

Advisories for theholidaycalendar

CVE-2015-9270 MEDIUM

XSS exists in the the-holiday-calendar plugin before 1.11.3 for WordPress via the thc-month parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
theholidaycalendar holiday_calendar *