Wordpress Event Tickets Vulnerabilities

Stored Cross-Site Scripting Vulnerability in EventPrime for WordPress Plugin

CVE-2024-12024

WordpressEventprime – Events Ca...6.1MEDIUM

Unauthenticated Attackers Can Extract Sensitive Data from Bookings

CVE-2024-12578

WordpressTickera – WordPress Ev...5.3MEDIUM

Plugin Vulnerable to Stored Cross-Site Scripting

CVE-2024-9866

WordpressEvent Tickets With Tic...5.4MEDIUM

Arbitrary Web Script Injection via Reflected Cross-Site Scripting in Sugar Calendar Plugin

CVE-2024-10878

WordpressSugar Calendar – Event...6.1MEDIUM

Unauthenticated Arbitrary Shortcode Execution Vulnerability in Tickera WordPress Event Ticketing Plugin

CVE-2024-10263

WordpressTickera – WordPress Ev...7.3HIGH

Stored Cross-Site Scripting Vulnerability in EventPrime Plugin

CVE-2024-9864

WordpressEventprime – Events Ca...6.1MEDIUM

Stored Cross-Site Scripting Vulnerability Affects EventPrime's WordPress Plugin

CVE-2024-9865

WordpressEventprime – Events Ca...6.1MEDIUM

Freemius SDK Vulnerabilities Affect Hundreds of WordPress Plugins and Themes

CVE-2022-4974

WordpressYasr – Yet Another Sta...6.3MEDIUM

Unauthorized Access to Private or Password-Protected Events Due to Missing Authorization Checks in EventPrime Plugin

CVE-2024-8369

WordpressEventprime – Events Ca...5.3MEDIUM

Authenticated Attackers Can Modify Event Registration Plugin Settings Due to Capability Check Failure

CVE-2024-6883

WordpressEvent Espresso – Event...4.3MEDIUM

Unauthorized Data Importation Vulnerability in Eventin Plugin

CVE-2024-6033

WordpressEvent Manager, Events ...4.3MEDIUM

WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce <= 3.1.43 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'events' Shortcode

CVE-2024-2691

WordpressWP Event Manager – Eve...5.4MEDIUM

Reflected Cross-Site Scripting Vulnerability in The Events Manager Plugin

CVE-2024-5889

WordpressEvents Manager – Calen...6.1MEDIUM

Unauthorized Ticket Deletion Vulnerability in Tickera WordPress Event Ticketing Plugin

CVE-2024-5860

WordpressTickera – WordPress Ev...4.3MEDIUM

Event Monster Plugin Vulnerable to PHP Object Injection

CVE-2024-1895

WordpressEvent Monster – Event ...7.5HIGH

Sensitive Information Exposure Vulnerability Affects Event Tickets and Registration Plugin for WordPress

CVE-2024-2261

WordpressEvent Tickets And Regi...4.3MEDIUM

Cross-Site Request Forgery Vulnerability Affects The Events Manager Plugin

CVE-2024-2110

WordpressEvents Manager – Calen...4.3MEDIUM

Stored Cross-Site Scripting Vulnerability Affects The Events Manager Plugin

CVE-2024-2111

WordpressEvents Manager – Calen...5.4MEDIUM

Unauthorized Access to Attendees List in EventPrime Plugin Due to Missing Capability Check

CVE-2024-1126

WordpressEventprime – Events Ca...4.3MEDIUM

Payment Bypass Vulnerability in EventPrime Events Calendar Plugin for WordPress

CVE-2024-1321

WordpressEventprime – Events Ca...5.3MEDIUM

Stored Cross-Site Scripting in Events Manager Plugin for WordPress

CVE-2024-0614

WordpressEvents Manager – Calen...4.8MEDIUM

Reflected Cross-Site Scripting Vulnerability in WP Event Manager Plugin

CVE-2024-0976

WordpressWP Event Manager – Eve...6.1MEDIUM

Data Exposure Risk in EventPrime Plugin for WordPress

CVE-2024-1127

WordpressEventprime – Events Ca...4.3MEDIUM

Unauthorized Data Loss in EventPrime Plugin Due to Missing Capability Check

CVE-2024-1125

WordpressEventprime – Events Ca...5.3MEDIUM

Stored Cross-Site Scripting Vulnerability in EventPrime's Events Calendar Plugin

CVE-2024-1320

WordpressEventprime – Events Ca...6.1MEDIUM

Vulnerability Published:

Sort By:

17 December 2024

Stored Cross-Site Scripting Vulnerability in EventPrime for WordPress Plugin

14 December 2024

Unauthenticated Attackers Can Extract Sensitive Data from Bookings

6 December 2024

Plugin Vulnerable to Stored Cross-Site Scripting

26 November 2024

Arbitrary Web Script Injection via Reflected Cross-Site Scripting in Sugar Calendar Plugin

5 November 2024

Unauthenticated Arbitrary Shortcode Execution Vulnerability in Tickera WordPress Event Ticketing Plugin

24 October 2024

Stored Cross-Site Scripting Vulnerability in EventPrime Plugin

Stored Cross-Site Scripting Vulnerability Affects EventPrime's WordPress Plugin

16 October 2024

Freemius SDK Vulnerabilities Affect Hundreds of WordPress Plugins and Themes

10 September 2024

Unauthorized Access to Private or Password-Protected Events Due to Missing Authorization Checks in EventPrime Plugin

21 August 2024

Authenticated Attackers Can Modify Event Registration Plugin Settings Due to Capability Check Failure

17 July 2024

Unauthorized Data Importation Vulnerability in Eventin Plugin

16 July 2024

WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce <= 3.1.43 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'events' Shortcode

29 June 2024

Reflected Cross-Site Scripting Vulnerability in The Events Manager Plugin

18 June 2024

Unauthorized Ticket Deletion Vulnerability in Tickera WordPress Event Ticketing Plugin

30 April 2024

Event Monster Plugin Vulnerable to PHP Object Injection

9 April 2024

Sensitive Information Exposure Vulnerability Affects Event Tickets and Registration Plugin for WordPress

28 March 2024

Cross-Site Request Forgery Vulnerability Affects The Events Manager Plugin

Stored Cross-Site Scripting Vulnerability Affects The Events Manager Plugin

13 March 2024

Unauthorized Access to Attendees List in EventPrime Plugin Due to Missing Capability Check

Payment Bypass Vulnerability in EventPrime Events Calendar Plugin for WordPress

Stored Cross-Site Scripting in Events Manager Plugin for WordPress

Reflected Cross-Site Scripting Vulnerability in WP Event Manager Plugin

Data Exposure Risk in EventPrime Plugin for WordPress

9 March 2024

Unauthorized Data Loss in EventPrime Plugin Due to Missing Capability Check

Stored Cross-Site Scripting Vulnerability in EventPrime's Events Calendar Plugin