The Quick Event Manager plugin for WordPress has a security weakness in versions up to and including 9.6.4. This weakness lets people with administrative privileges to inject malicious web scripts into pages. Whenever someone accesses one of these pages