Description
WordPress Plugin Calendar Event Multi View is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently modify plugin's settings. WordPress Plugin Calendar Event Multi View version 1.4.13 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.4.15 or latest
References
Related Vulnerabilities
WordPress Plugin WordPress File Upload Directory Traversal (4.12.2)
MySQL CVE-2016-3495 Vulnerability (CVE-2016-3495)
MySQL CVE-2013-1512 Vulnerability (CVE-2013-1512)
Oracle Database Server Credentials Management Errors Vulnerability (CVE-2007-6260)
Oracle Database Server CVE-2020-2731 Vulnerability (CVE-2020-2731)