Security WordPress PHP Event Calendar 1.5 Arbitrary File Upload April 3, 2015 007admin Leave a comment WordPress PHP Event Calendar plugin version 1.5 suffers from an arbitrary file upload vulnerability.