CVE-2025-12646 | Community Events Plugin up to 1.5.4 on WordPress dayofyear sql injection

A vulnerability categorized as critical has been discovered in Community Events Plugin up to 1.5.4 on WordPress. This issue affects some unknown processing. The manipulation of the argument dayofyear results in sql injection.

This vulnerability is identified as CVE-2025-12646. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More