Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:23 a.m.8 views

CVE-2024-1123

The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the savefrontendeventsubmission function in all versions up to, and including, 3.4.2. This makes it possible for authenticated...

6.5CVSS6.7AI score0.0041EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/03/11 12:0 a.m.8 views

WordPress EventPrime Plugin <= 3.4.2 is vulnerable to Broken Access Control

Software EventPrime Type Plugin Vulnerable versions = 3.4.2 Fixed in 3.4.3 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1123 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID c2164132e177 Credits Lucio Sá Required privilege...

6.5CVSS6.5AI score0.0041EPSS
Exploits0References4Affected Software1
Circl
Circl
added 2024/03/09 8:26 a.m.4 views

CVE-2024-1123

creationtimestamp| type| source ---|---|--- 2024-03-09 08:26:42+00:00| seen| https://t.me/ctinow/203812 2024-03-09 08:26:50+00:00| seen| https://t.me/ctinow/203818...

6.5CVSS7.2AI score0.0041EPSS
Exploits0References2
CVE
CVE
added 2024/03/09 7:1 a.m.60 views

CVE-2024-1123

CVE-2024-1123 concerns the EventPrime – Events Calendar, Bookings and Tickets WordPress plugin. The vulnerability is a missing capability check in save_frontend_event_submission() across versions up to and including 3.4.2, enabling unauthorized data modification. Exploitation requires subscriber-...

6.5CVSS6.9AI score0.0041EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/03/09 7:1 a.m.17 views

CVE-2024-1123 EventPrime – Events Calendar, Bookings and Tickets <= 3.4.2 - Missing Authorization to Arbitrary Post Overwrite

The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the savefrontendeventsubmission function in all versions up to, and including, 3.4.2. This makes it possible for authenticated...

6.5CVSS6.4AI score0.0041EPSS
Exploits0References2
Rows per page
Query Builder