Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 316 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-4109 Eventin – Events Calendar, Event Booking, Ticket & Registration (AI Powered) <= 4.1.8 Missing Authorization to Authenticated (Subscriber+) Order Information Exposure arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) Medium 4.3 2026-04-14 07:43:04 Deep Dive
CVE-2026-39536 WordPress RSVP and Event Management plugin <= 2.7.16 - Sensitive Data Exposure vulnerability WP ChillRSVP and Event Management--2026-04-08 08:30:17 Deep Dive
CVE-2026-5190 AWS C Event Stream Streaming Decoder Stack Buffer Overflow AWSaws-c-event-stream High 7.5 2026-03-31 17:06:00 Deep Dive
CVE-2026-25465 WordPress CP Multi View Event Calendar plugin <= 1.4.36 - Cross Site Scripting (XSS) vulnerability codepeopleCP Multi View Event Calendar Medium 6.5 2026-03-25 16:14:52 Deep Dive
CVE-2026-32449 WordPress Themify Event Post plugin <= 1.3.4 - Cross Site Scripting (XSS) vulnerability themifymeThemify Event Post 中危 -2026-03-13 11:42:21 Deep Dive
CVE-2019-25537 Netartmedia Event Portal 2.0 SQL Injection via loginaction.php NetartmediaNetartmedia Event Portal High 8.2 2026-03-12 15:37:08 Deep Dive
CVE-2026-1650 MDJM Event Management <= 1.7.8.1 - Missing Authorization to Unauthenticated Arbitrary Custom Event Field Deletion mdjmMDJM Event Management Medium 5.3 2026-03-07 01:21:23 Deep Dive
CVE-2026-27340 WordPress Apollo | Night Club, DJ Event WordPress Theme theme <= 1.3.1 - Local File Inclusion vulnerability AncoraThemesApollo | Night Club, DJ Event WordPress Theme 中危 -2026-03-05 05:53:52 Deep Dive
CVE-2026-2355 My Calendar – Accessible Event Manager <= 3.7.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes joedolsonMy Calendar – Accessible Event Manager Medium 6.4 2026-03-04 11:22:30 Deep Dive
CVE-2026-2915 HP System Event Utility – Denial of Service HP IncHP System Event Utility--2026-03-03 19:25:57 Deep Dive
CVE-2026-3043 itsourcecode Event Management System navbar.php cross site scripting itsourcecodeEvent Management System Medium 4.3 2026-02-23 23:02:12 Deep Dive
CVE-2026-3042 itsourcecode Event Management System index.php sql injection itsourcecodeEvent Management System High 7.3 2026-02-23 23:02:09 Deep Dive
CVE-2025-69384 WordPress Timeline Event History plugin <= 3.2 - Reflected Cross Site Scripting (XSS) vulnerability wpdiscoverTimeline Event History--2026-02-20 15:46:54 Deep Dive
CVE-2026-0556 XO Event Calendar <= 3.2.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'xo_event_field' shortcode ishitakaXO Event Calendar Medium 6.4 2026-02-19 04:36:14 Deep Dive
CVE-2026-2691 itsourcecode Event Management System manage_register.php sql injection itsourcecodeEvent Management System High 7.3 2026-02-19 01:32:07 Deep Dive
CVE-2026-2690 itsourcecode Event Management System Admin Login ajax.php sql injection itsourcecodeEvent Management System High 7.3 2026-02-19 01:02:07 Deep Dive
CVE-2026-2689 itsourcecode Event Management System manage_booking.php sql injection itsourcecodeEvent Management System High 7.3 2026-02-19 00:32:08 Deep Dive
CVE-2026-1941 WP Event Aggregator <= 1.8.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes xylusWP Event Aggregator: Import Eventbrite events, Meetup events, social events and any iCal Events into Event Calendar Medium 6.4 2026-02-18 08:26:03 Deep Dive
CVE-2026-1983 SEATT: Simple Event Attendance <= 1.5.0 - Cross-Site Request Forgery to Arbitrary Event Deletion sourcezSEATT: Simple Event Attendance Medium 4.3 2026-02-14 04:35:42 Deep Dive
CVE-2026-2217 itsourcecode Event Management System manage_user.php sql injection itsourcecodeEvent Management System High 7.3 2026-02-09 05:32:07 Deep Dive