Access Control Vulnerability in EventPrime by EventPrime
CVE-2026-25312
7.5HIGH
What is CVE-2026-25312?
The EventPrime plugin suffers from a missing authorization vulnerability that arises from incorrectly configured access control security levels. This flaw permits unauthorized users to bypass security measures, potentially leading to unauthorized access to sensitive functionalities within the application. Affected versions include EventPrime up to 4.2.8.3. It is crucial for users to ensure that proper authorization checks are implemented to prevent exploitation of this vulnerability.
Affected Version(s)
EventPrime 0 <= 4.2.8.3