Secunia Security Advisory - Two vulnerabilities have been discovered in Spider Calendar plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks.
da85f412d5fc6bdb16e226f45256c0f0b60a5cbb258d24c75dacd3aa531ee5a0