EventON (Pro) - WordPress Virtual Event Calendar Plugin — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in EventON (Pro) - WordPress Virtual Event Calendar Plugin, with AI-generated Chinese analysis, references, and POCs.

Vendor: EventON

CVE ID	Title	CVSS	Severity	Published
CVE-2025-3527	EventON - WordPress Virtual Event Calendar Plugin <= 4.9.6 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting CWE-862	6.4	Medium	2025-05-17
CVE-2023-6243	EventON PRO - WordPress Virtual Event Calendar Plugin <= 4.6.8 - Cross-Site Request Forgery via admin_test_email CWE-352	4.3	Medium	2024-10-19

All 2 known CVE vulnerabilities affecting EventON (Pro) - WordPress Virtual Event Calendar Plugin with full Chinese analysis, references, and POCs where available.

Goal Reached Thanks to every supporter — we hit 100%!

EventON (Pro) - WordPress Virtual Event Calendar Plugin — Vulnerabilities & Security Advisories 2