The Events Calendar plugin for WordPress is vulnerable to a security issue which could allow unauthorized people to view private event content. Versions up to 6.1.2.2 are affected, due to a missing capability check on the get_ical_output_for_an_event() function.