CVE-2022-47164 WordPress Event Manager for WooCommerce Plugin <= 3.7.7 is vulnerable to Cross Site Request Forgery (CSRF)

🗓️ 25 May 2023 08:27:25Reported by PatchstackType

WordPress Event Manager for WooCommerce Plugin 3.7.7 CSRF vulnerability

Reporter	Title	Published	Views	Family All 11
CNNVD	WordPress plugin Event Manager and Tickets Selling Plugin for WooCommerce 跨站请求伪造漏洞	25 May 202300:00	–	cnnvd
CVE	CVE-2022-47164	25 May 202308:27	–	cve
EUVD	EUVD-2022-49939	3 Oct 202520:07	–	euvd
NVD	CVE-2022-47164	25 May 202309:15	–	nvd
OSV	CVE-2022-47164	25 May 202309:15	–	osv
Patchstack	WordPress Event Manager for WooCommerce Plugin <= 3.7.7 is vulnerable to Cross Site Request Forgery (CSRF)	16 Mar 202300:00	–	patchstack
Prion	Cross site request forgery (csrf)	25 May 202309:15	–	prion
Positive Technologies	PT-2023-15207 · WordPress · Magepeople Team Event Manager/Tickets Selling Plugin For Woocommerce	25 May 202300:00	–	ptsecurity
Vulnrichment	CVE-2022-47164 WordPress Event Manager for WooCommerce Plugin <= 3.7.7 is vulnerable to Cross Site Request Forgery (CSRF)	25 May 202308:27	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (Mar 13, 2023 to Mar 19, 2023)	23 Mar 202313:52	–	wordfence

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "mage-eventpress",
    "product": "Event Manager and Tickets Selling Plugin for WooCommerce",
    "vendor": "MagePeople Team",
    "versions": [
      {
        "changes": [
          {
            "at": "3.7.8",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "3.7.7",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/mage-eventpress/wordpress-event-manager-and-tickets-selling-plugin-for-woocommerce-plugin-3-7-7-cross-site-request-forgery-csrf

28 Apr 2026 16:07Current

9High risk

Vulners AI Score9

CVSS 3.14.3

EPSS0.00293

CWE-352