Wordpress Eventprime Vulnerabilities

Permission Validation Flaw in EventPrime WordPress Plugin

CVE-2024-4665

WordPressEventprime👾🟡5.3MEDIUM

Unauthorized Data Access in EventPrime Events Calendar Plugin for WordPress

CVE-2024-13526

WordPressEventprime – Events Ca...4.3MEDIUM

Stored Cross-Site Scripting Vulnerability in EventPrime for WordPress Plugin

CVE-2024-12024

WordpressEventprime – Events Ca...6.1MEDIUM

WordPress EventPrime plugin <= 4.0.3.2 - Broken Access Control vulnerability

CVE-2024-43223

WordPressEventprime4.3MEDIUM

Stored Cross-Site Scripting Vulnerability in EventPrime Plugin

CVE-2024-9864

WordpressEventprime – Events Ca...6.1MEDIUM

Stored Cross-Site Scripting Vulnerability Affects EventPrime's WordPress Plugin

CVE-2024-9865

WordpressEventprime – Events Ca...6.1MEDIUM

EventPrime Events Vulnerability to Untrusted Sites

CVE-2024-47648

WordPressEventprime6.1MEDIUM

Unauthorized Access to Private or Password-Protected Events Due to Missing Authorization Checks in EventPrime Plugin

CVE-2024-8369

WordpressEventprime – Events Ca...5.3MEDIUM

Missing Authorization Vulnerability Affects EventPrime

CVE-2024-31275

WordPressEventprime9.8CRITICAL

Authorization Vulnerability Affects EventPrime

CVE-2023-33321

WordPressEventprime5.3MEDIUM

XSS Vulnerability in Metagauss EventPrime

CVE-2024-29776

WordPressEventprime4.8MEDIUM

Missing Authorization vulnerability in Metagauss EventPrime

CVE-2024-24832

WordPressEventprime7.5HIGH

Unauthorized Access to Attendees List in EventPrime Plugin Due to Missing Capability Check

CVE-2024-1126

WordpressEventprime – Events Ca...4.3MEDIUM

Payment Bypass Vulnerability in EventPrime Events Calendar Plugin for WordPress

CVE-2024-1321

WordpressEventprime – Events Ca...5.3MEDIUM

Data Exposure Risk in EventPrime Plugin for WordPress

CVE-2024-1127

WordpressEventprime – Events Ca...4.3MEDIUM

Unauthorized Data Loss in EventPrime Plugin Due to Missing Capability Check

CVE-2024-1125

WordpressEventprime – Events Ca...5.3MEDIUM

Stored Cross-Site Scripting Vulnerability in EventPrime's Events Calendar Plugin

CVE-2024-1320

WordpressEventprime – Events Ca...6.1MEDIUM

Unauthorized Modification of Data in EventPrime Plugin Due to Missing Capability Check

CVE-2024-1123

WordpressEventprime – Events Ca...6.5MEDIUM

Unauthorized Email Sending Vulnerability in EventPrime Plugin

CVE-2024-1124

WordpressEventprime – Events Ca...4.3MEDIUM

EventPrime < 3.3.6 - Unauthenticated Event Access

CVE-2023-6447

WordpressEventprime👾🟡5.3MEDIUM

EventPrime <= 3.2.9 - Booking Pricing Bypass

CVE-2023-4252

WordpressEventprime5.3MEDIUM

EventPrime < 3.2.0 - Reflected XSS

CVE-2023-4250

WordpressEventprime👾🟡6.1MEDIUM

EventPrime < 3.2.0 - Booking Creation via CSRF

CVE-2023-4251

WordpressEventprime👾🟡4.3MEDIUM

EventPrime < 3.2.0 - Reflected HTML Injection on keyword parameter

CVE-2023-5238

WordpressEventprime👾🟡6.1MEDIUM

EventPrime < 3.2.0 - Booking Creation via CSRF

CVE-2023-5519

WordpressEventprime👾🟡4.3MEDIUM

Vulnerability Published:

Sort By:

15 May 2025

Permission Validation Flaw in EventPrime WordPress Plugin

7 March 2025

Unauthorized Data Access in EventPrime Events Calendar Plugin for WordPress

17 December 2024

Stored Cross-Site Scripting Vulnerability in EventPrime for WordPress Plugin

1 November 2024

WordPress EventPrime plugin <= 4.0.3.2 - Broken Access Control vulnerability

24 October 2024

Stored Cross-Site Scripting Vulnerability in EventPrime Plugin

Stored Cross-Site Scripting Vulnerability Affects EventPrime's WordPress Plugin

10 October 2024

EventPrime Events Vulnerability to Untrusted Sites

10 September 2024

Unauthorized Access to Private or Password-Protected Events Due to Missing Authorization Checks in EventPrime Plugin

9 June 2024

Missing Authorization Vulnerability Affects EventPrime

17 May 2024

Authorization Vulnerability Affects EventPrime

27 March 2024

XSS Vulnerability in Metagauss EventPrime

23 March 2024

Missing Authorization vulnerability in Metagauss EventPrime

13 March 2024

Unauthorized Access to Attendees List in EventPrime Plugin Due to Missing Capability Check

Payment Bypass Vulnerability in EventPrime Events Calendar Plugin for WordPress

Data Exposure Risk in EventPrime Plugin for WordPress

9 March 2024

Unauthorized Data Loss in EventPrime Plugin Due to Missing Capability Check

Stored Cross-Site Scripting Vulnerability in EventPrime's Events Calendar Plugin

Unauthorized Modification of Data in EventPrime Plugin Due to Missing Capability Check

Unauthorized Email Sending Vulnerability in EventPrime Plugin

22 January 2024

EventPrime < 3.3.6 - Unauthenticated Event Access

27 November 2023

EventPrime <= 3.2.9 - Booking Pricing Bypass

31 October 2023

EventPrime < 3.2.0 - Reflected XSS

EventPrime < 3.2.0 - Booking Creation via CSRF

EventPrime < 3.2.0 - Reflected HTML Injection on keyword parameter

EventPrime < 3.2.0 - Booking Creation via CSRF