Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Vulnerability List - Page 6

Clear Filters
Found 160 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-5441 Modern Events Calendar <= 7.11.0 - Authenticated (Subscriber+) Arbitrary File Upload WebnusModern Events Calendar High 8.8 2024-07-09 05:34:18 Deep Dive
CVE-2024-5889 Events Manager <= 6.4.8 - Reflected Cross-Site Scripting netweblogicEvents Manager – Calendar, Bookings, Tickets, and more! Medium 6.1 2024-06-29 04:33:29 Deep Dive
CVE-2024-6225 Amelia <= 1.1.5 & Amelia (Pro) <= 7.5.1 - Authenticated (Admin+) Stored Cross-Site Scripting ameliabookingBooking for Appointments and Events Calendar – Amelia Medium 4.4 2024-06-21 07:39:57 Deep Dive
CVE-2024-1295 The Events Calendar (Free < 6.4.0.1, Pro < 6.4.0.1) - Contributor+ Arbitrary Events Access Unknownevents-calendar-pro--2024-06-14 06:00:02 Deep Dive
CVE-2024-3492 Events Manager – Calendar, Bookings, Tickets, and more! <= 6.4.7.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via event, location, and event_category Shortcodes netweblogicEvents Manager – Calendar, Bookings, Tickets, and more! Medium 6.4 2024-06-12 11:05:09 Deep Dive
CVE-2024-4180 The Events Calendar < 6.4.0.1 - Reflected XSS UnknownThe Events Calendar--2024-06-04 06:00:03 Deep Dive
CVE-2024-24715 WordPress WordPress BookIt Plugin plugin <= 2.4.0 - Price Bypass Vulnerability vulnerability The Events CalendarBookIt Medium 6.5 2024-05-17 08:48:05 Deep Dive
CVE-2024-31433 WordPress The Events Calendar plugin <= 6.3.0 - Cross Site Request Forgery (CSRF) vulnerability StellarWPThe Events Calendar Medium 4.3 2024-04-15 09:29:42 Deep Dive
CVE-2024-2110 Events Manager <= 6.4.7.1 - Cross-Site Request Forgery netweblogicEvents Manager – Calendar, Bookings, Tickets, and more! Medium 4.3 2024-03-28 02:04:11 Deep Dive
CVE-2024-2111 Events Manager <= 6.4.7.1 - Authenticated (Contributor+) Stored Cross-Site Scripting netweblogicEvents Manager – Calendar, Bookings, Tickets, and more! Medium 6.4 2024-03-28 02:04:07 Deep Dive
CVE-2024-1126 EventPrime – Events Calendar, Bookings and Tickets <= 3.4.2 - Missing Authorization to Authenticated (Subscriber+) Attendee List Retrieval metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 4.3 2024-03-13 15:27:17 Deep Dive
CVE-2024-1321 EventPrime – Events Calendar, Bookings and Tickets <= 3.4.2 - Unauthenticated Booking Payment Bypass metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 5.3 2024-03-13 15:26:57 Deep Dive
CVE-2024-0614 Events Manager <= 6.4.6.4 - Authenticated(Administator+) Stored Cross-Site Scripting via settings netweblogicEvents Manager – Calendar, Bookings, Tickets, and more! Medium 4.4 2024-03-13 15:26:52 Deep Dive
CVE-2024-0976 WP Event Manager <= 3.1.41 - Reflected Cross-Site Scripting via plugin wpeventmanagerWP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce Medium 6.1 2024-03-13 15:26:48 Deep Dive
CVE-2024-1484 Booking for Appointments and Events Calendar – Amelia <= 1.0.98 - Reflected Cross-Site Scripting ameliabookingBooking for Appointments and Events Calendar – Amelia Medium 6.1 2024-03-13 15:26:45 Deep Dive
CVE-2024-1127 EventPrime – Events Calendar, Bookings and Tickets <= 3.4.1 - Missing Authorization to Authenticated (Subscriber+) Event Export metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 4.3 2024-03-13 15:26:44 Deep Dive
CVE-2024-1125 EventPrime – Events Calendar, Bookings and Tickets <= 3.4.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Deletion metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 5.4 2024-03-09 07:01:10 Deep Dive
CVE-2024-1320 EventPrime – Events Calendar, Bookings and Tickets <= 3.4.3 - Unauthenticated Stored Cross-Site Scripting metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 6.5 2024-03-09 07:01:10 Deep Dive
CVE-2024-1123 EventPrime – Events Calendar, Bookings and Tickets <= 3.4.2 - Missing Authorization to Arbitrary Post Overwrite metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 6.5 2024-03-09 07:01:09 Deep Dive
CVE-2024-1124 EventPrime – Events Calendar, Bookings and Tickets <= 3.4.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Email Sending metagaussEventPrime – Events Calendar, Bookings and Tickets Medium 4.3 2024-03-09 07:01:05 Deep Dive