Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 39 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-24378 WordPress EventPrime plugin <= 4.2.8.0 - PHP Object Injection vulnerability MetagaussEventPrime Critical 9.8 2026-03-25 16:14:33 Deep Dive
CVE-2025-69358 WordPress EventPrime plugin <= 4.2.6.0 - Broken Access Control vulnerability MetagaussEventPrime High 7.5 2026-03-25 16:14:22 Deep Dive
CVE-2026-25312 WordPress EventPrime plugin <= 4.2.8.3 - Payment Bypass vulnerability MetagaussEventPrime 高危 -2026-03-19 07:21:00 Deep Dive
CVE-2026-25389 WordPress EventPrime plugin <= 4.2.8.3 - Sensitive Data Exposure vulnerability MetagaussEventPrime--2026-02-19 08:27:02 Deep Dive
CVE-2026-1655 EventPrime <= 4.2.8.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Event Modification via 'event_id' Parameter metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 4.3 2026-02-18 07:25:40 Deep Dive
CVE-2026-1657 EventPrime <= 4.2.8.4 - Missing Authorization to Unauthenticated Image Upload via 'ep_upload_file_media' AJAX Endpoint metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 5.3 2026-02-17 05:29:53 Deep Dive
CVE-2026-24380 WordPress EventPrime plugin <= 4.2.8.0 - Broken Access Control vulnerability MetagaussEventPrime Medium 5.3 2026-01-22 16:52:47 Deep Dive
CVE-2025-14507 EventPrime - Events Calendar, Bookings and Tickets <= 4.2.7.0 - Unauthenticated Sensitive Information Exposure via REST API metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 5.3 2026-01-13 13:49:13 Deep Dive
CVE-2025-63007 WordPress EventPrime plugin <= 4.2.4.1 - Sensitive Data Exposure vulnerability MetagaussEventPrime--2025-12-09 14:52:27 Deep Dive
CVE-2025-63006 WordPress EventPrime plugin <= 4.2.4.1 - Broken Access Control vulnerability MetagaussEventPrime Medium 4.3 2025-12-09 14:52:27 Deep Dive
CVE-2025-12498 EventPrime – Events Calendar, Bookings and Tickets <= 4.2.0.0 - Missing Authorization to Authenticated (Subscriber+) Booking Note Creation metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 4.3 2025-11-08 06:39:56 Deep Dive
CVE-2024-4665 EventPrime – Events Calendar, Bookings and Tickets < 3.5.0 - Subscriber+ Arbitrary booking settings update UnknownEventPrime--2025-05-15 20:09:46 Deep Dive
CVE-2024-13526 EventPrime – Events Calendar, Bookings and Tickets <= 4.0.7.3 - Missing Authorization to Authenticated (Subscriber+) Event Attendees Export metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 4.3 2025-03-07 01:44:54 Deep Dive
CVE-2024-12024 EventPrime – Events Calendar, Bookings and Tickets <= 4.0.7.3 - Unauthenticated Stored Cross-Site Scripting via Ticket Category and Ticket Type Name metagaussEventPrime – Events Calendar, Bookings and Tickets High 7.2 2024-12-17 09:22:42 Deep Dive
CVE-2024-43223 WordPress EventPrime plugin <= 4.0.3.2 - Broken Access Control vulnerability EventPrime EventsEventPrime Medium 4.3 2024-11-01 14:17:38 Deep Dive
CVE-2024-9864 EventPrime – Modern Events Calendar, Bookings and Tickets <= 4.0.4.7 - Unauthenticated Stored Cross-Site Scripting metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 6.1 2024-10-24 06:50:25 Deep Dive
CVE-2024-9865 EventPrime – Modern Events Calendar, Bookings and Tickets <= 4.0.4.7 - Unauthenticated Stored Cross-Site Scripting via Transaction Log metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 6.1 2024-10-24 06:50:24 Deep Dive
CVE-2024-47648 WordPress EventPrime plugin <= 4.0.4.5 - Open Redirection vulnerability MetagaussEventPrime Medium 4.7 2024-10-10 18:06:33 Deep Dive
CVE-2024-8369 EventPrime <= 4.0.4.3 - Missing Authorization to Unauthenticated Private or Password-Protected Events Disclosure metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 5.3 2024-09-10 11:30:32 Deep Dive
CVE-2024-31275 WordPress EventPrime plugin <= 3.3.4 - Booking Price Manipulation vulnerability MetagaussEventPrime High 8.2 2024-06-09 18:16:10 Deep Dive