| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-25361 | WordPress WpEvently plugin <= 5.1.4 - Reflected Cross Site Scripting (XSS) vulnerability | magepeopleteam | WpEvently | High | 7.1 | 2026-03-25 16:14:46 | Deep Dive |
| CVE-2026-32354 | WordPress WpEvently plugin < 5.1.9 - Sensitive Data Exposure vulnerability | magepeopleteam | WpEvently | 中危 | - | 2026-03-13 11:42:00 | Deep Dive |
| CVE-2026-23549 | WordPress WpEvently plugin <= 5.1.1 - PHP Object Injection vulnerability | magepeopleteam | WpEvently | - | - | 2026-02-19 08:26:50 | Deep Dive |
| CVE-2026-24954 | WordPress WpEvently plugin <= 5.0.8 - Deserialization of untrusted data vulnerability | magepeopleteam | WpEvently | - | - | 2026-02-03 14:08:34 | Deep Dive |
| CVE-2026-24942 | WordPress WpEvently plugin <= 5.1.1 - Cross Site Request Forgery (CSRF) vulnerability | magepeopleteam | WpEvently | - | - | 2026-02-03 14:08:33 | Deep Dive |
| CVE-2025-66082 | WordPress WpEvently plugin <= 5.0.4 - Broken Access Control vulnerability | magepeopleteam | WpEvently | Medium | 5.3 | 2025-11-21 12:29:58 | Deep Dive |
| CVE-2025-66083 | WordPress WpEvently plugin <= 5.0.4 - Broken Access Control vulnerability | magepeopleteam | WpEvently | Medium | 5.3 | 2025-11-21 12:29:58 | Deep Dive |
| CVE-2025-54742 | WordPress WpEvently Plugin <= 4.4.8 - PHP Object Injection Vulnerability | magepeopleteam | WpEvently | High | 8.8 | 2025-08-28 12:37:40 | Deep Dive |
| CVE-2025-54705 | WordPress WpEvently plugin <= 4.4.6 - Broken Access Control vulnerability | magepeopleteam | WpEvently | Medium | 4.3 | 2025-08-14 10:34:58 | Deep Dive |
| CVE-2025-5568 | WpEvently <= 4.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting | magepeopleteam | Event Booking Manager for WooCommerce | Medium | 6.4 | 2025-06-07 11:17:51 | Deep Dive |
| CVE-2025-32145 | WordPress WpEvently plugin <= 4.3.6 - PHP Object Injection vulnerability | magepeopleteam | WpEvently | High | 8.8 | 2025-04-10 08:09:43 | Deep Dive |
| CVE-2025-30895 | WordPress WpEvently Plugin <= 4.2.9 - PHP Object Injection vulnerability | magepeopleteam | WpEvently | High | 7.5 | 2025-03-27 10:55:47 | Deep Dive |
| CVE-2025-30887 | WordPress WpEvently Plugin <= 4.2.9 - Broken Access Control vulnerability | magepeopleteam | WpEvently | Medium | 5.3 | 2025-03-27 10:55:43 | Deep Dive |
| CVE-2024-49703 | WordPress WpEvently plugin <= 4.2.5 - Cross Site Scripting (XSS) vulnerability | magepeopleteam | WpEvently | Medium | 6.5 | 2024-10-24 12:11:18 | Deep Dive |
| CVE-2024-24796 | WordPress Event Manager for WooCommerce Plugin <= 4.1.1 is vulnerable to PHP Object Injection | MagePeople Team | Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin | High | 8.2 | 2024-02-12 07:47:08 | Deep Dive |