Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Vulnerability List - Page 4

Clear Filters
Found 94 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-3492 Events Manager – Calendar, Bookings, Tickets, and more! <= 6.4.7.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via event, location, and event_category Shortcodes netweblogicEvents Manager – Calendar, Bookings, Tickets, and more! Medium 6.4 2024-06-12 11:05:09 Deep Dive
CVE-2024-35652 WordPress Event Tickets with Ticket Scanner plugin <= 2.3.1 - Reflected Cross Site Scripting (XSS) vulnerability Saso NikolovEvent Tickets with Ticket Scanner High 7.1 2024-06-04 14:12:57 Deep Dive
CVE-2023-23988 WordPress My Tickets plugin <= 1.9.11 - Payment Bypass Vulnerability Joseph C DolsonMy Tickets High 7.5 2024-05-17 06:33:10 Deep Dive
CVE-2024-1895 Event Monster <= 1.3.9 - Authenticated(Contributor+) PHP Object Injection via Custom Meta awordpresslifeEvent Monster – Manager & Ticket Booking High 7.5 2024-04-30 08:32:22 Deep Dive
CVE-2024-2261 Event Tickets and Registration <= 5.8.2 - Improper Authorization to Information Disclosure stellarwpEvent Tickets and Registration Medium 4.3 2024-04-09 18:58:41 Deep Dive
CVE-2024-2110 Events Manager <= 6.4.7.1 - Cross-Site Request Forgery netweblogicEvents Manager – Calendar, Bookings, Tickets, and more! Medium 4.3 2024-03-28 02:04:11 Deep Dive
CVE-2024-2111 Events Manager <= 6.4.7.1 - Authenticated (Contributor+) Stored Cross-Site Scripting netweblogicEvents Manager – Calendar, Bookings, Tickets, and more! Medium 6.4 2024-03-28 02:04:07 Deep Dive
CVE-2024-1126 EventPrime – Events Calendar, Bookings and Tickets <= 3.4.2 - Missing Authorization to Authenticated (Subscriber+) Attendee List Retrieval metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 4.3 2024-03-13 15:27:17 Deep Dive
CVE-2024-1321 EventPrime – Events Calendar, Bookings and Tickets <= 3.4.2 - Unauthenticated Booking Payment Bypass metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 5.3 2024-03-13 15:26:57 Deep Dive
CVE-2024-0614 Events Manager <= 6.4.6.4 - Authenticated(Administator+) Stored Cross-Site Scripting via settings netweblogicEvents Manager – Calendar, Bookings, Tickets, and more! Medium 4.4 2024-03-13 15:26:52 Deep Dive
CVE-2024-0976 WP Event Manager <= 3.1.41 - Reflected Cross-Site Scripting via plugin wpeventmanagerWP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce Medium 6.1 2024-03-13 15:26:48 Deep Dive
CVE-2024-1127 EventPrime – Events Calendar, Bookings and Tickets <= 3.4.1 - Missing Authorization to Authenticated (Subscriber+) Event Export metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 4.3 2024-03-13 15:26:44 Deep Dive
CVE-2024-1320 EventPrime – Events Calendar, Bookings and Tickets <= 3.4.3 - Unauthenticated Stored Cross-Site Scripting metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 6.5 2024-03-09 07:01:10 Deep Dive
CVE-2024-1125 EventPrime – Events Calendar, Bookings and Tickets <= 3.4.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Deletion metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 5.4 2024-03-09 07:01:10 Deep Dive
CVE-2024-1123 EventPrime – Events Calendar, Bookings and Tickets <= 3.4.2 - Missing Authorization to Arbitrary Post Overwrite metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 6.5 2024-03-09 07:01:09 Deep Dive
CVE-2024-1124 EventPrime – Events Calendar, Bookings and Tickets <= 3.4.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Email Sending metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 4.3 2024-03-09 07:01:05 Deep Dive
CVE-2024-1316 Event Tickets and Registration < 5.8.1 - Contributor+ Arbitrary Events Access UnknownEvent Tickets and Registration--2024-03-04 21:00:10 Deep Dive
CVE-2024-1319 Event Tickets Plus < 5.9.1 - Contributor+ Attendees Lists Disclosure UnknownEvents Tickets Plus--2024-03-04 21:00:09 Deep Dive
CVE-2024-1053 Event Tickets and Registration <= 5.8.1 - Missing Authorization stellarwpEvent Tickets and Registration Medium 4.3 2024-02-22 05:32:49 Deep Dive
CVE-2024-24796 WordPress Event Manager for WooCommerce Plugin <= 4.1.1 is vulnerable to PHP Object Injection MagePeople TeamEvent Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin High 8.2 2024-02-12 07:47:08 Deep Dive