| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-1122 | Event Manager, Events Calendar, Events Tickets for WooCommerce – Eventin <= 3.3.50 - Missing Authorization to Unauthenticated Events Export | arraytics | Eventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) | Medium | 5.3 | 2024-02-09 04:31:54 | Deep Dive |
| CVE-2023-47525 | WordPress Event Monster plugin <= 1.4.9 - Cross Site Scripting (XSS) vulnerability | A WP Life | Event Management Tickets Booking | Medium | 5.9 | 2023-12-21 14:25:40 | Deep Dive |
| CVE-2023-49181 | WordPress WP Event Manager Plugin <= 3.1.40 is vulnerable to Cross Site Scripting (XSS) | WP Event Manager | WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce | Medium | 5.9 | 2023-12-15 14:49:52 | Deep Dive |
| CVE-2023-47697 | WordPress WP Event Manager Plugin <= 3.1.39 is vulnerable to Cross Site Scripting (XSS) | WP Event Manager | WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce | High | 7.1 | 2023-11-13 22:28:41 | Deep Dive |
| CVE-2023-45637 | WordPress EventPrime Plugin <= 3.1.5 is vulnerable to Cross Site Scripting (XSS) | EventPrime | EventPrime – Events Calendar, Bookings and Tickets | High | 7.1 | 2023-10-24 11:02:56 | Deep Dive |
| CVE-2023-4423 | WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce <= 3.1.37.1 - Authenticated (Admin+) Stored Cross-Site Scripting | wpeventmanager | WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce | Medium | 4.4 | 2023-09-27 03:03:01 | Deep Dive |
| CVE-2023-36383 | WordPress Event Manager for WooCommerce Plugin <= 3.9.5 is vulnerable to Cross Site Scripting (XSS) | MagePeople Team | Event Manager and Tickets Selling Plugin for WooCommerce | Medium | 5.9 | 2023-07-18 14:22:14 | Deep Dive |
| CVE-2022-47164 | WordPress Event Manager for WooCommerce Plugin <= 3.7.7 is vulnerable to Cross Site Request Forgery (CSRF) | MagePeople Team | Event Manager and Tickets Selling Plugin for WooCommerce | Medium | 4.3 | 2023-05-25 08:27:25 | Deep Dive |
| CVE-2023-28422 | WordPress Event Manager for WooCommerce Plugin <= 3.8.6 is vulnerable to Cross Site Scripting (XSS) | MagePeople Team | Event Manager and Tickets Selling Plugin for WooCommerce | Medium | 5.9 | 2023-03-23 11:45:08 | Deep Dive |
| CVE-2022-47440 | WordPress My Tickets Plugin <= 1.9.10 is vulnerable to Cross Site Request Forgery (CSRF) | Joseph C Dolson | My Tickets | Medium | 4.3 | 2023-03-13 09:14:32 | Deep Dive |
| CVE-2023-0144 | Event Manager and Tickets Selling Plugin for WooCommerce < 3.8.0 - Contributor+ Stored XSS | Unknown | Event Manager and Tickets Selling Plugin for WooCommerce | 中危 | - | 2023-02-06 19:59:27 | Deep Dive |
| CVE-2022-0478 | Event Manager for WooCommerce < 3.5.8 - Contributor+ SQL Injection | Unknown | Event Manager and Tickets Selling Plugin for WooCommerce | 高危 | - | 2022-03-14 14:41:34 | Deep Dive |
| CVE-2021-25028 | Event Tickets < 5.2.2 - Open Redirect | Unknown | Event Tickets | 中危 | - | 2022-01-24 08:01:12 | Deep Dive |
| CVE-2021-24796 | My Tickets < 1.8.31 - Unauthenticated Stored Cross-Site Scripting | Unknown | My Tickets | 中危 | - | 2021-11-17 10:15:40 | Deep Dive |