CVE-2026-6854 | joedolson My Calendar Plugin up to 3.7.8 Authentication mc_auth sql injection
A vulnerability has been found in joedolson My Calendar Plugin up to 3.7.8 and classified as critical. Affected by this vulnerability is an unknown functionality of the component Authentication Handler. Performing a manipulation of the argument mc_auth results in sql injection.
This vulnerability is reported as CVE-2026-6854. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More