Description
WordPress Plugin Modern Events Calendar Lite is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently modify plugin's settings. WordPress Plugin Modern Events Calendar Lite version 5.1.6 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 5.1.8 or latest
References
Related Vulnerabilities
WordPress Plugin WP Google Maps Unspecified Vulnerability (6.2.1)
Magento Violation of Secure Design Principles Vulnerability (CVE-2021-28583)
Nexus Repository Manager Cleartext Storage of Sensitive Information Vulnerability (CVE-2020-11415)
FluxBB Other Vulnerability (CVE-2014-10030)
WordPress Plugin Responsive WordPress Slider Cross-Site Scripting (2.2.0)