5 matches found
CVE-2024-31275
Missing Authorization vulnerability in Metagauss EventPrime.This issue affects EventPrime: from n/a through 3.3.4...
CVE-2024-31275 WordPress EventPrime plugin <= 3.3.4 - Booking Price Manipulation vulnerability
Missing Authorization vulnerability in Metagauss EventPrime.This issue affects EventPrime: from n/a through 3.3.4...
CVE-2024-31275
CVE-2024-31275 is a Missing Authorization vulnerability in the WordPress EventPrime plugin (EventPrime – Events Calendar, Bookings and Tickets) affecting versions up to and including 3.3.4. Connected sources indicate a Booking Price Manipulation flaw allowing unauthenticated actions; the vulnerab...
CVE-2024-31275 WordPress EventPrime plugin <= 3.3.4 - Booking Price Manipulation vulnerability
Missing Authorization vulnerability in Metagauss EventPrime.This issue affects EventPrime: from n/a through 3.3.4...
WordPress EventPrime Plugin <= 3.3.4 is vulnerable to Broken Access Control
Software EventPrime Type Plugin Vulnerable versions = 3.3.4 Fixed in 3.3.5 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-31275 Patch priority Low CVSS severity Low 8.2 Developer Claim ownership PSID 798327419eed Credits Joshua Chan Required privilege...