• info
• discussion
• exploit
• solution
• references

WordPress WP Events Calendar 'ec_management.class.php' Cross Site Scripting Vulnerability

Attackers can exploit this issue by enticing an unsuspecting victim to follow a malicious URI.