CVE-2018-5315by Jeremyin Security Bulletinson Posted on January 12, 2018 The Wachipi WP Events Calendar plugin 1.0 for WordPress has SQL Injection via the event_id parameter to event.php.