| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-33972 | SQL injection in Janobe products | Janobe | School Attendance Monitoring System | Critical | 9.8 | 2024-08-06 11:56:27 | Deep Dive |
| CVE-2024-33971 | SQL injection in Janobe products | Janobe | School Attendance Monitoring System | Critical | 9.8 | 2024-08-06 11:56:00 | Deep Dive |
| CVE-2024-33970 | SQL injection in Janobe products | Janobe | School Attendance Monitoring System | Critical | 9.8 | 2024-08-06 11:55:30 | Deep Dive |
| CVE-2024-33969 | SQL injection in Janobe products | Janobe | School Attendance Monitoring System | Critical | 9.8 | 2024-08-06 11:55:03 | Deep Dive |
| CVE-2024-33968 | SQL injection in Janobe products | Janobe | School Attendance Monitoring System | Critical | 9.8 | 2024-08-06 11:54:22 | Deep Dive |
| CVE-2024-33967 | SQL injection in Janobe products | Janobe | School Attendance Monitoring System | Critical | 9.8 | 2024-08-06 11:53:34 | Deep Dive |
| CVE-2024-39630 | WordPress Timetable and Event Schedule by MotoPress plugin <= 2.4.13 - PHP Object Injection vulnerability | MotoPress | Timetable and Event Schedule | Medium | 5.5 | 2024-08-01 20:38:49 | Deep Dive |
| CVE-2024-38703 | WordPress WP Event Aggregator plugin <= 1.7.9 - Cross Site Scripting (XSS) vulnerability | Xylus Themes | WP Event Aggregator | Medium | 6.5 | 2024-07-20 07:32:15 | Deep Dive |
| CVE-2024-5726 | Timeline Event History <= 3.1 - Authenticated (Contributor+) PHP Object Injection | wpdiscover | Timeline Event History | High | 8.8 | 2024-07-18 02:03:56 | Deep Dive |
| CVE-2024-6033 | Event Manager, Events Calendar, Tickets, Registrations – Eventin <= 4.0.4 - Missing Authorization to Authenticated (Contributor+) Event Data Import | arraytics | Eventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) | Medium | 4.3 | 2024-07-17 06:45:08 | Deep Dive |
| CVE-2024-2691 | WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce <= 3.1.43 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'events' Shortcode | wpeventmanager | WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce | Medium | 6.4 | 2024-07-16 08:32:30 | Deep Dive |
| CVE-2024-38735 | WordPress Event post plugin <= 5.9.5 - Local File Inclusion vulnerability | Bastien Ho | Event post | High | 7.5 | 2024-07-12 15:19:59 | Deep Dive |
| CVE-2024-1375 | Event post <= 5.9.10 - Cross-Site Request Forgery | bastho | Event post | Medium | 4.3 | 2024-07-12 02:36:08 | Deep Dive |
| CVE-2024-5059 | WordPress Event Monster Plugin <= 1.4.0 - Sensitive Data Exposure vulnerability | A WP Life | Event Management Tickets Booking | Medium | 5.3 | 2024-06-21 13:03:31 | Deep Dive |
| CVE-2024-5860 | Tickera <= 3.5.2.8 - Missing Authorization to Authenticated (Susbcriber+) Ticket Deletion | tickera | Tickera – Sell Tickets & Manage Events | Medium | 4.3 | 2024-06-18 03:13:36 | Deep Dive |
| CVE-2024-6009 | itsourcecode Event Calendar process.php regDelete sql injection | itsourcecode | Event Calendar | Medium | 6.3 | 2024-06-15 15:31:04 | Deep Dive |
| CVE-2024-28964 | Dell Common Event Enabler 代码问题漏洞 | Dell | Common Event Enabler | High | 7.8 | 2024-06-12 15:02:54 | Deep Dive |
| CVE-2024-35711 | WordPress Event theme <= 1.2.2 - Cross Site Scripting (XSS) vulnerability | Theme Freesia | Event | Medium | 6.5 | 2024-06-08 13:59:04 | Deep Dive |
| CVE-2024-35652 | WordPress Event Tickets with Ticket Scanner plugin <= 2.3.1 - Reflected Cross Site Scripting (XSS) vulnerability | Saso Nikolov | Event Tickets with Ticket Scanner | High | 7.1 | 2024-06-04 14:12:57 | Deep Dive |
| CVE-2023-28492 | WordPress Calendar Event Multi View plugin <= 1.4.10 - Missing Authorization Leading To Feedback Submission vulnerability | CodePeople | CP Multi View Event Calendar | Medium | 4.3 | 2024-06-03 22:09:38 | Deep Dive |