Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 21 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-4109 Eventin – Events Calendar, Event Booking, Ticket & Registration (AI Powered) <= 4.1.8 Missing Authorization to Authenticated (Subscriber+) Order Information Exposure arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) Medium 4.3 2026-04-14 07:43:04 Deep Dive
CVE-2025-68047 WordPress Eventin plugin <= 4.1.3 - PHP Object Injection vulnerability ArrayticsEventin--2026-01-22 16:52:06 Deep Dive
CVE-2025-14657 Eventin – Event Manager, Event Booking, Calendar, Tickets and Registration Plugin (AI Powered) <= 4.0.51 - Missing Authorization to Unauthenticated Stored Cross-Site Scripting via 'post_settings' arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) High 7.2 2026-01-09 07:22:13 Deep Dive
CVE-2025-7813 Event Manager, Events Calendar, Booking, Registrations and Tickets – Eventin <= 4.0.37 - Unauthenticated Server-Side Request Forgery arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) High 7.2 2025-08-23 05:48:20 Deep Dive
CVE-2025-49869 WordPress Eventin Plugin <= 4.0.31 - PHP Object Injection Vulnerability ArrayticsEventin High 8.8 2025-08-14 10:34:08 Deep Dive
CVE-2025-4796 Eventin <= 4.0.34 - Authenticated (Contributor+) Privilege Escalation via User Email Change/Account Takeover arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) High 8.8 2025-08-08 18:26:27 Deep Dive
CVE-2025-49321 WordPress Eventin plugin <= 4.0.28 - Cross Site Scripting (XSS) Vulnerability ArrayticsEventin High 7.1 2025-06-27 11:52:32 Deep Dive
CVE-2025-47539 WordPress Eventin plugin <= 4.0.26 - Privilege Escalation Vulnerability ArrayticsEventin Critical 9.8 2025-05-23 12:43:31 Deep Dive
CVE-2025-47445 WordPress Eventin plugin <= 4.0.26 - Arbitrary File Download Vulnerability ArrayticsEventin High 7.5 2025-05-14 11:37:49 Deep Dive
CVE-2025-3419 Event Manager, Events Calendar, Tickets, Registrations – Eventin <= 4.0.26 - Unauthenticated Arbitrary File Read arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) High 7.5 2025-05-08 05:22:51 Deep Dive
CVE-2025-39584 WordPress Eventin plugin <= 4.0.25 - Local File Inclusion Vulnerability ArrayticsEventin High 7.5 2025-04-16 12:44:23 Deep Dive
CVE-2025-1766 Event Manager, Events Calendar, Tickets, Registrations – Eventin <= 4.0.24 - Missing Authorization to Unauthenticated Payment Status Update arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) Medium 5.3 2025-03-20 05:22:35 Deep Dive
CVE-2025-1770 Event Manager, Events Calendar, Tickets, Registrations – Eventin <= 4.0.24 - Authenticated (Contributor+) Local File Inclusion arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) High 8.8 2025-03-20 05:22:35 Deep Dive
CVE-2025-26964 WordPress Eventin plugin <= 4.0.20 - Local File Inclusion vulnerability ArrayticsEventin High 7.5 2025-02-25 14:17:57 Deep Dive
CVE-2024-56213 WordPress Eventin plugin <= 4.0.7 - Contributor+ Limited Local File Inclusion vulnerability ArrayticsEventin Medium 6.5 2024-12-31 10:02:21 Deep Dive
CVE-2023-49756 WordPress Eventin plugin <= 3.3.52 - Authenticated Notice Dismissal Vulnerability ArrayticsEventin 中危 -2024-12-09 11:30:15 Deep Dive
CVE-2024-7149 Event Manager, Events Calendar, Tickets, Registrations – Eventin <= 4.0.8 - Authenticated (Contributor+) Local File Inclusion arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) High 8.8 2024-09-27 13:52:55 Deep Dive
CVE-2024-39648 WordPress Eventin plugin <= 4.0.5 - Cross Site Scripting (XSS) vulnerability ThemewinterEventin Medium 5.9 2024-08-01 21:56:28 Deep Dive
CVE-2024-37507 WordPress Eventin plugin <= 3.3.57 - Cross Site Scripting (XSS) vulnerability ThemewinterEventin Medium 6.5 2024-07-21 07:21:16 Deep Dive
CVE-2024-6033 Event Manager, Events Calendar, Tickets, Registrations – Eventin <= 4.0.4 - Missing Authorization to Authenticated (Contributor+) Event Data Import arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) Medium 4.3 2024-07-17 06:45:08 Deep Dive