CVE-2025-39372 – WordPress Events Calendar Registration & Tickets Cross-site Scripting

May 19, 2025

CVE ID : CVE-2025-39372

Published : May 19, 2025, 8:15 p.m. | 2 hours, 33 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in elbisnero WordPress Events Calendar Registration & Tickets allows Reflected XSS.This issue affects WordPress Events Calendar Registration & Tickets: from n/a through 2.6.0.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-39380 – Mojoomla Hospital Management System File Upload Vulnerability

Next Article CVE-2025-39366 – Rocket Apps wProject Privilege Escalation Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Helldivers 2: Heart of Democracy update is live, and you need to jump in to save Super Earth from the Illuminate

Qualcomm’s new Adreno Control Panel will let you fine-tune the GPU for certain games on Snapdragon X Elite devices

Samsung takes on LG’s best gaming TVs — adds NVIDIA G-SYNC support to 2025 flagship

The biggest unanswered questions about Xbox’s next-gen consoles

HCL Commerce V9.1 – The Power of HCL Commerce Search

HCL Commerce V9.1 – The Power of HCL Commerce Search

Community News: Latest PECL Releases (05.20.2025)

Getting Started with Personalization in Sitecore XM Cloud: Enable, Extend, and Execute

Helldivers 2: Heart of Democracy update is live, and you need to jump in to save Super Earth from the Illuminate

Helldivers 2: Heart of Democracy update is live, and you need to jump in to save Super Earth from the Illuminate

Qualcomm’s new Adreno Control Panel will let you fine-tune the GPU for certain games on Snapdragon X Elite devices

Samsung takes on LG’s best gaming TVs — adds NVIDIA G-SYNC support to 2025 flagship

CVE-2025-39372 – WordPress Events Calendar Registration & Tickets Cross-site Scripting

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-5011 – MoonlightL Hexo-Boot Cross-Site Scripting Vulnerability

OpenAIâ€™s leadership is rocked by another set of high-profile exits

Microsoft doesn’t want you to bypass Windows 11 requirements on Windows 10

Co-op CEO to Members: We’re Fighting to Protect Your Data

Databricks DBRX is now available in Amazon SageMaker JumpStart

Working toward AIOps maturity? Itâ€™s never too early (or late) for platform engineering

This AI Paper Reveals the Inner Workings of Rotary Positional Embeddings in Transformers

LinkedIn gets its own suite of video tools as it grows video presence on platform

How safe is DeepSeek R1 on Microsoft’s Copilot+ PCs, and are your data being sent to China?

CVE-2025-39372 – WordPress Events Calendar Registration & Tickets Cross-site Scripting

Related Posts