The Embed Calendly plugin for WordPress is not secure enough in versions 3.6 and earlier. This means that people with certain levels of permission can add malicious code to certain pages which will run whenever someone visits the page. This can be dangerous and could allow the malicious code to do things like steal information or take control of the page.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
