CVE-2024-8700 Information

Description

The Event Calendar WordPress plugin through 1.0.4 does not check for authorization on delete actions allowing unauthenticated users to delete arbitrary calendars.

Reference

https://wpscan.com/vulnerability/8c48b657-afa1-45e6-ada6-27ee58185143/