CVE-2023-6360 Information

Description

The ‘My Calendar’ WordPress Plugin version < 3.4.22 is affected by an unauthenticated SQL injection vulnerability in the ‘from’ and ’to’ parameters in the ‘/my-calendar/v1/events’ rest route.

Reference

https://www.tenable.com/security/research/tra-2023-40