Petitemais

**Name of the Vulnerable Software and Affected Versions** The Events Calendar versions through 6.1.2.2 **Description** The issue is related to missing authorization in The Events Calendar, allowing exploitation of incorrectly configured access control security levels. **Recommendations** For versions through 6.1.2.2, update to a version that contains a fix for this issue, as the current version allows exploitation of access control security levels due to missing authorization. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress versions prior to 3.6.25 **Description** The issue is related to an uncontrolled resource consumption vulnerability in Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress, which can lead to a Denial of Service (DoS). **Recommendations** For versions prior to 3.6.25, update to version 3.6.25 or later to resolve the issue.