VR Calendar

Vulnerabilities 8Slug vr-calendar-syncLatest version 2.4.7WordPress.org →Closed
Medium 4.3 Unfixed Closed
2025-06-27≤ 2.4.7

WordPress VR Calendar Plugin <= 2.4.7 is vulnerable to Cross Site Request Forgery (CSRF)

EUVDPatchstackWordfenceCVE
N/A Closed
2022-07-26< 2.3.2

VR Calendar <= 2.3.1 - Reflected Cross-Site Scripting

Wordfence
N/A Closed
2022-07-28< 2.4.5

VR Calendar <= 2.4.4 - Authenticated (Administrator+) Local File Inclusion

Wordfence
N/A Closed
< 2.3.1

VR Calendar &lt; 2.3.1 - Reflected Cross-Site Scripting

WPScan
N/A Closed
< 2.4.5

VR Calendar &lt;= 2.3.3 - Admin+ LFI

WPScan