- This topic has 3 replies, 4 voices, and was last updated 9 years, 5 months ago by
.
-
Posts
-
We are using the Community Events plugin alongside The Events Calendar Pro for a site and have found that users have attacked our site using the field: “VENUE DETAILS: Use Saved Venue:”.
Can the plugin makers please confirm if all input fields are properly sanitised in this plugin and all their other event plugins, and let us know how we can stop people from inserting scripts?
…into our fields and and ensure they can’t compromise the site using this attack method?
Hey there! This thread has been pretty quiet for the last three weeks, so we’re going to go ahead and close it to avoid confusion with other topics. If you’re still looking for help with this, please do open a new thread, reference this one and we’d be more than happy to continue the conversation over there.
Thanks so much!
The Events Calendar Support Team
- The topic ‘SQLI Injections with community events plugin’ is closed to new replies.