CVE-2025-1410 | apexws Events Calendar Made Simple Plugin up to 1.2.5 on WordPress Shortcode piecal cross site scripting

CVE-2025-1410 | apexws Events Calendar Made Simple Plugin up to 1.2.5 on WordPress Shortcode piecal cross site scripting

A vulnerability was found in apexws Events Calendar Made Simple Plugin up to 1.2.5 on WordPress and classified as problematic. This issue affects the function piecal of the component Shortcode Handler. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2025-1410. The attack may be initiated remotely. There is no exploit available.