https://www.pluginvulnerabilities.com/2017/11/27/did-the-wordpress-plugin-directory-know-that-php-event-calendar-contains-an-exploitable-vulnerability/

A day ago we had what looks to be a request from a hacker for a file that would be located at /wp-content/plugins/php-event-calendar/server/file-uploader/index.php. That would be a file in the plugin PHP Event Calendar. In the Plugin Directory the plugin “has been closed and is no longer available for download”, but no reason is given as to why that is.

Share This