| CVE-2024-13007 | Codezips Event Management System contact.php sql injection | Codezips | Event Management System | Medium | 6.3 | 2024-12-29 08:31:05 | Deep Dive |
| CVE-2024-12578 | Tickera – WordPress Event Ticketing <= 3.5.4.8 - Unauthenticated Customer Data Exposure | tickera | Tickera – Sell Tickets & Manage Events | Medium | 5.3 | 2024-12-14 04:23:40 | Deep Dive |
| CVE-2024-54338 | WordPress Hello Event Widgets For Elementor plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability | christer_f | Hello Event Widgets For Elementor | Medium | 6.5 | 2024-12-13 14:25:38 | Deep Dive |
| CVE-2023-23814 | WordPress Calendar Event Multi View plugin <= 1.4.13 - Broken Access Control vulnerability | codepeople | CP Multi View Event Calendar | Low | 3.8 | 2024-12-09 11:31:51 | Deep Dive |
| CVE-2023-23975 | WordPress Quick Event Manager plugin <= 9.7.4 - Broken Access Control vulnerability | brightvesseldev | Quick Event Manager | Medium | 5.3 | 2024-12-09 11:31:43 | Deep Dive |
| CVE-2024-9866 | Event Tickets with Ticket Scanner <= 2.4.4 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting | sasonikolov | Event Tickets with Ticket Scanner | Medium | 5.4 | 2024-12-06 08:24:52 | Deep Dive |
| CVE-2024-53721 | WordPress Advanced Event Manager plugin <= 1.1.6 - Cross Site Scripting (XSS) vulnerability | Stachethemes | Advanced Event Manager | Medium | 6.5 | 2024-12-02 13:48:43 | Deep Dive |
| CVE-2024-10878 | Sugar Calendar (Lite) <= 3.3.0 - Reflected Cross-Site Scripting | smub | Sugar Calendar – Events Calendar, Event Tickets, and Events Management Platform | Medium | 6.1 | 2024-11-26 17:32:11 | Deep Dive |
| CVE-2024-52427 | WordPress Event Tickets with Ticket Scanner plugin <= 2.3.11 - Remote Code Execution (RCE) vulnerability | Vollstart | Event Tickets with Ticket Scanner | Critical | 9.9 | 2024-11-18 14:22:15 | Deep Dive |
| CVE-2024-10669 | Countdown Timer block – Display the event's date into a timer. <= 1.2.4 - Authenticated (Contributor+) Post Disclosure | bplugins | Countdown Timer Block – Animated Countdown for Events or Launches | Medium | 4.3 | 2024-11-09 04:32:27 | Deep Dive |
| CVE-2024-10186 | Event Post <= 5.9.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via events_cal Shortcode | bastho | Event post | Medium | 6.4 | 2024-11-06 12:43:14 | Deep Dive |
| CVE-2024-10263 | Tickera – WordPress Event Ticketing <= 3.5.4.4 - Unauthenticated Arbitrary Shortcode Execution | tickera | Tickera – Sell Tickets & Manage Events | High | 7.3 | 2024-11-05 12:45:22 | Deep Dive |
| CVE-2024-10805 | code-projects University Event Management System doedit.php sql injection | code-projects | University Event Management System | Medium | 6.3 | 2024-11-04 22:31:04 | Deep Dive |
| CVE-2024-10760 | code-projects University Event Management System dodelete.php sql injection | code-projects | University Event Management System | Medium | 6.3 | 2024-11-04 04:31:04 | Deep Dive |
| CVE-2024-10700 | code-projects University Event Management System submit.php sql injection | code-projects | University Event Management System | Medium | 6.3 | 2024-11-02 16:00:07 | Deep Dive |
| CVE-2020-36840 | Timetable and Event Schedule by MotoPress <= 2.3.8 - Missing Authorization | jetmonsters | Timetable and Event Schedule by MotoPress | High | 7.3 | 2024-10-16 07:31:51 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-7149 | Event Manager, Events Calendar, Tickets, Registrations – Eventin <= 4.0.8 - Authenticated (Contributor+) Local File Inclusion | arraytics | Eventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) | High | 8.8 | 2024-09-27 13:52:55 | Deep Dive |
| CVE-2024-8671 | WooEvents <= 4.1.2 - Unauthenticated Arbitrary File Overwrite | Ex-Themes | WooEvents - Calendar and Event Booking | Critical | 9.1 | 2024-09-24 03:06:38 | Deep Dive |
| CVE-2024-8432 | Appointment & Event Booking Calendar Plugin – Webba Booking <= 5.0.48 - Missing Authorization to Authenticated (Subscriber+) CSS Settings Update | webba-agency | Easy Appointment Booking & Scheduling System – Webba Booking Calendar | Medium | 4.3 | 2024-09-24 01:56:45 | Deep Dive |