Known Vulnerabilities
CVE-2024-47321
Missing Authorization vulnerability in Fahad Mahmood WP Datepicker allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WP Datepicker: from n/a through 2.1.1.
MEDIUM
CVSS 6.5
Published Nov 01, 2024
CVE-2024-44042
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Fahad Mahmood WP Datepicker allows Stored XSS.This issue affects WP Datepicker: from n/a through 2.1.1.
MEDIUM
CVSS 5.9
Published Oct 06, 2024