Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

EventPrime — Vulnerabilities & Security Advisories 22

All 22 CVE vulnerabilities found in EventPrime, with AI-generated Chinese analysis, references, and POCs.

Vendor: EventPrime

CVE IDTitleCVSSSeverityPaused
CVE-2026-24378 WordPress EventPrime plugin <= 4.2.8.0 - PHP Object Injection vulnerability CWE-502 9.8 Critical2026-03-25
CVE-2025-69358 WordPress EventPrime plugin <= 4.2.6.0 - Broken Access Control vulnerability CWE-862 7.5 High2026-03-25
CVE-2026-25312 WordPress EventPrime plugin <= 4.2.8.3 - Payment Bypass vulnerability CWE-862 7.1 -2026-03-19
CVE-2026-25389 WordPress EventPrime plugin <= 4.2.8.3 - Sensitive Data Exposure vulnerability CWE-497 6.2AIMediumAI2026-02-19
CVE-2026-24380 WordPress EventPrime plugin <= 4.2.8.0 - Broken Access Control vulnerability CWE-862 5.3 Medium2026-01-22
CVE-2025-63007 WordPress EventPrime plugin <= 4.2.4.1 - Sensitive Data Exposure vulnerability CWE-201 5.5AIMediumAI2025-12-09
CVE-2025-63006 WordPress EventPrime plugin <= 4.2.4.1 - Broken Access Control vulnerability CWE-862 4.3 Medium2025-12-09
CVE-2024-4665 EventPrime – Events Calendar, Bookings and Tickets < 3.5.0 - Subscriber+ Arbitrary booking settings update 4.3AIMediumAI2025-05-15
CVE-2024-43223 WordPress EventPrime plugin <= 4.0.3.2 - Broken Access Control vulnerability CWE-862 4.3 Medium2024-11-01
CVE-2024-47648 WordPress EventPrime plugin <= 4.0.4.5 - Open Redirection vulnerability CWE-601 4.7 Medium2024-10-10
CVE-2024-31275 WordPress EventPrime plugin <= 3.3.4 - Booking Price Manipulation vulnerability CWE-862 8.2 High2024-06-09
CVE-2023-33321 WordPress EventPrime plugin <= 2.8.6 - Sensitive Data Exposure CWE-862 5.3 Medium2024-05-17
CVE-2024-29776 WordPress EventPrime plugin <= 3.3.9 - Cross Site Scripting (XSS) vulnerability 5.9 Medium2024-03-27
CVE-2024-24832 WordPress EventPrime plugin <= 3.3.9 - Broken Access Control vulnerability CWE-862 8.2 High2024-03-23
CVE-2023-6447 EventPrime < 3.3.6 - Unauthenticated Event Access 5.3 -2024-01-22
CVE-2023-4252 EventPrime <= 3.2.9 - Booking Pricing Bypass 5.3 -2023-11-27
CVE-2023-4250 EventPrime < 3.2.0 - Reflected XSS 6.1 -2023-10-31
CVE-2023-4251 EventPrime < 3.2.0 - Booking Creation via CSRF 4.3 -2023-10-31
CVE-2023-5238 EventPrime < 3.2.0 - Reflected HTML Injection on keyword parameter 6.1 -2023-10-31
CVE-2023-5519 EventPrime < 3.2.0 - Booking Creation via CSRF 4.3 -2023-10-31
CVE-2023-35884 WordPress EventPrime Plugin <= 3.0.5 is vulnerable to Cross Site Scripting (XSS) CWE-79 7.1 High2023-06-20
CVE-2023-33326 WordPress EventPrime Plugin <= 2.8.6 is vulnerable to Cross Site Scripting (XSS) CWE-79 7.1 High2023-05-28

All 22 known CVE vulnerabilities affecting EventPrime with full Chinese analysis, references, and POCs where available.