| CVE-2024-1122 | Event Manager, Events Calendar, Events Tickets for WooCommerce – Eventin <= 3.3.50 - Missing Authorization to Unauthenticated Events Export | arraytics | Eventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) | Medium | 5.3 | 2024-02-09 04:31:54 | Deep Dive |
| CVE-2023-6557 | The Events Calendar <= 6.2.8.2 - Unauthenticated Sensitive Information Exposure | stellarwp | The Events Calendar | Medium | 5.3 | 2024-02-05 21:22:06 | Deep Dive |
| CVE-2023-6808 | Booking for Appointments and Events Calendar – Amelia <= 1.0.93 - Authenticated(Contributor+) Stored Cross-Site Scripting via shortcode | ameliabooking | Booking for Appointments and Events Calendar – Amelia | Medium | 6.4 | 2024-02-05 21:21:57 | Deep Dive |
| CVE-2023-52142 | WordPress Events Shortcodes & Templates For The Events Calendar Plugin <= 2.3.1 is vulnerable to SQL Injection | Cool Plugins | Events Shortcodes For The Events Calendar | High | 7.6 | 2024-01-08 20:56:11 | Deep Dive |
| CVE-2023-50860 | WordPress Amelia Plugin <= 1.0.85 is vulnerable to Cross Site Scripting (XSS) | TMS | Booking for Appointments and Events Calendar – Amelia | Medium | 6.5 | 2023-12-28 10:14:11 | Deep Dive |
| CVE-2023-6203 | The Events Calendar < 6.2.8.1 - Unauthenticated Arbitrary Password Protected Post Read | Unknown | The Events Calendar | - | - | 2023-12-18 20:07:53 | Deep Dive |
| CVE-2023-49181 | WordPress WP Event Manager Plugin <= 3.1.40 is vulnerable to Cross Site Scripting (XSS) | WP Event Manager | WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce | Medium | 5.9 | 2023-12-15 14:49:52 | Deep Dive |
| CVE-2023-47697 | WordPress WP Event Manager Plugin <= 3.1.39 is vulnerable to Cross Site Scripting (XSS) | WP Event Manager | WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce | High | 7.1 | 2023-11-13 22:28:41 | Deep Dive |
| CVE-2023-31093 | WordPress Chronosly Events Calendar Plugin <= 2.6.2 is vulnerable to Cross Site Request Forgery (CSRF) | Chronosly | Chronosly Events Calendar | 高危 | - | 2023-11-09 22:49:26 | Deep Dive |
| CVE-2023-45637 | WordPress EventPrime Plugin <= 3.1.5 is vulnerable to Cross Site Scripting (XSS) | EventPrime | EventPrime – Events Calendar, Bookings and Tickets | High | 7.1 | 2023-10-24 11:02:56 | Deep Dive |
| CVE-2023-4021 | Modern Events Calendar lite < 7.1.0 - Authenticated (Admin+) Stored Cross-Site Scripting | webnus/ | Modern Events Calendar Lite | Medium | 4.4 | 2023-10-20 07:29:40 | Deep Dive |
| CVE-2023-4423 | WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce <= 3.1.37.1 - Authenticated (Admin+) Stored Cross-Site Scripting | wpeventmanager | WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce | Medium | 4.4 | 2023-09-27 03:03:01 | Deep Dive |
| CVE-2023-29427 | WordPress Amelia Plugin <= 1.0.75 is vulnerable to Cross Site Scripting (XSS) | TMS | Booking for Appointments and Events Calendar – Amelia | High | 7.1 | 2023-06-26 08:32:56 | Deep Dive |
| CVE-2022-4950 | Cool Plugins (Various Versions) - Arbitrary Plugin Installation and Activation | narinder-singh | The Events Calendar Events Notification Bar Addon | High | 8.8 | 2023-06-07 01:51:53 | Deep Dive |
| CVE-2023-1400 | Modern Events Calendar lite < 6.5.2 - Admin+ Stored XSS | Unknown | Modern Events Calendar Lite | 中危 | - | 2023-03-27 15:37:25 | Deep Dive |
| CVE-2022-4320 | WordPress Events Calendar Plugin < 1.4.5 - Multiple Reflected XSS | Unknown | WordPress Events Calendar Plugin | 中危 | - | 2023-01-16 15:37:54 | Deep Dive |
| CVE-2022-1474 | WP Event Manager < 3.1.28 - Reflected Cross-Site Scripting | Unknown | WP Event Manager – Easily Build your Calendar of Events! | 中危 | - | 2022-07-11 12:55:45 | Deep Dive |
| CVE-2022-30533 | Modern Events Calendar Lite 跨站脚本漏洞 | Webnus | Modern Events Calendar Lite | 中危 | - | 2022-06-16 01:35:18 | Deep Dive |
| CVE-2022-27848 | WordPress Modern Events Calendar Lite plugin <= 6.5.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability | Webnus | Modern Events Calendar Lite (WordPress plugin) | Low | 3.4 | 2022-04-14 20:05:48 | Deep Dive |
| CVE-2022-0825 | Amelia < 1.0.49 - Customer+ Arbitrary Appointments Status Update | Unknown | Amelia – Events & Appointments Booking Calendar | 中危 | - | 2022-04-04 15:35:49 | Deep Dive |