Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Vulnerability List - Page 2

Clear Filters
Found 59 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-31462 WordPress CGM Event Calendar plugin <= 0.8.5 - Cross Site Scripting (XSS) Vulnerability rzfarrellCGM Event Calendar High 7.1 2025-04-01 20:58:11 Deep Dive
CVE-2025-1770 Event Manager, Events Calendar, Tickets, Registrations – Eventin <= 4.0.24 - Authenticated (Contributor+) Local File Inclusion arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) High 8.8 2025-03-20 05:22:35 Deep Dive
CVE-2025-1766 Event Manager, Events Calendar, Tickets, Registrations – Eventin <= 4.0.24 - Missing Authorization to Unauthenticated Payment Status Update arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) Medium 5.3 2025-03-20 05:22:35 Deep Dive
CVE-2024-11870 Event Registration Calendar By vcita <= 1.4.0 - Authenticated (Contributor+) Stored Cross-Site Scripting vcitaEvent Registration Calendar By vcita Medium 6.4 2025-01-15 07:10:47 Deep Dive
CVE-2023-23814 WordPress Calendar Event Multi View plugin <= 1.4.13 - Broken Access Control vulnerability codepeopleCP Multi View Event Calendar Low 3.8 2024-12-09 11:31:51 Deep Dive
CVE-2024-10878 Sugar Calendar (Lite) <= 3.3.0 - Reflected Cross-Site Scripting smubSugar Calendar – Events Calendar, Event Tickets, and Events Management Platform Medium 6.1 2024-11-26 17:32:11 Deep Dive
CVE-2022-4974 Freemius SDK <= 2.4.2 - Missing Authorization Checks dashlabsltdYASR – Yet Another Star Rating Plugin for WordPress Medium 6.3 2024-10-16 06:43:30 Deep Dive
CVE-2024-7149 Event Manager, Events Calendar, Tickets, Registrations – Eventin <= 4.0.8 - Authenticated (Contributor+) Local File Inclusion arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) High 8.8 2024-09-27 13:52:55 Deep Dive
CVE-2024-8671 WooEvents <= 4.1.2 - Unauthenticated Arbitrary File Overwrite Ex-ThemesWooEvents - Calendar and Event Booking Critical 9.1 2024-09-24 03:06:38 Deep Dive
CVE-2024-8432 Appointment & Event Booking Calendar Plugin – Webba Booking <= 5.0.48 - Missing Authorization to Authenticated (Subscriber+) CSS Settings Update webba-agencyEasy Appointment Booking & Scheduling System – Webba Booking Calendar Medium 4.3 2024-09-24 01:56:45 Deep Dive
CVE-2024-6033 Event Manager, Events Calendar, Tickets, Registrations – Eventin <= 4.0.4 - Missing Authorization to Authenticated (Contributor+) Event Data Import arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) Medium 4.3 2024-07-17 06:45:08 Deep Dive
CVE-2024-2691 WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce <= 3.1.43 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'events' Shortcode wpeventmanagerWP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce Medium 6.4 2024-07-16 08:32:30 Deep Dive
CVE-2024-6009 itsourcecode Event Calendar process.php regDelete sql injection itsourcecodeEvent Calendar Medium 6.3 2024-06-15 15:31:04 Deep Dive
CVE-2023-28492 WordPress Calendar Event Multi View plugin <= 1.4.10 - Missing Authorization Leading To Feedback Submission vulnerability CodePeopleCP Multi View Event Calendar Medium 4.3 2024-06-03 22:09:38 Deep Dive
CVE-2024-0976 WP Event Manager <= 3.1.41 - Reflected Cross-Site Scripting via plugin wpeventmanagerWP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce Medium 6.1 2024-03-13 15:26:48 Deep Dive
CVE-2024-1122 Event Manager, Events Calendar, Events Tickets for WooCommerce – Eventin <= 3.3.50 - Missing Authorization to Unauthenticated Events Export arrayticsEventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) Medium 5.3 2024-02-09 04:31:54 Deep Dive
CVE-2023-51354 WordPress Webba Booking Plugin <= 4.5.33 is vulnerable to Cross Site Request Forgery (CSRF) WebbaPluginsAppointment & Event Booking Calendar Plugin – Webba Booking Medium 4.3 2023-12-29 12:23:41 Deep Dive
CVE-2023-49181 WordPress WP Event Manager Plugin <= 3.1.40 is vulnerable to Cross Site Scripting (XSS) WP Event ManagerWP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce Medium 5.9 2023-12-15 14:49:52 Deep Dive
CVE-2023-47697 WordPress WP Event Manager Plugin <= 3.1.39 is vulnerable to Cross Site Scripting (XSS) WP Event ManagerWP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce High 7.1 2023-11-13 22:28:41 Deep Dive
CVE-2023-4423 WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce <= 3.1.37.1 - Authenticated (Admin+) Stored Cross-Site Scripting wpeventmanagerWP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce Medium 4.4 2023-09-27 03:03:01 Deep Dive