Restore missing features, patch exploits, and expand possibilities
Download Launcher Join DiscordThe Modern Events Calendar plugin, specifically versions near 6.6.12, is associated with a critical file-upload vulnerability (CVE-2024-5441) that allowed attackers to execute arbitrary code and take full control of over 150,000 WordPress sites. Patched in version 7.12.0, this vulnerability resulted from a lack of file-type validation, leaving sites using older or "nulled" versions highly exposed to active exploitation. Read the full analysis at BleepingComputer . Modern Events Calendar - Vulnerability Database - Wordfence
Connect with over 16,500 members in our Discord server! Get support, share content, participate in events, and stay updated with the latest AlterWare news.
The Modern Events Calendar plugin, specifically versions near 6.6.12, is associated with a critical file-upload vulnerability (CVE-2024-5441) that allowed attackers to execute arbitrary code and take full control of over 150,000 WordPress sites. Patched in version 7.12.0, this vulnerability resulted from a lack of file-type validation, leaving sites using older or "nulled" versions highly exposed to active exploitation. Read the full analysis at BleepingComputer . Modern Events Calendar - Vulnerability Database - Wordfence