3 matches found
WordPress The Events Calendar plugin <= 6.15.12.2 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin The Events Calendar versions = 6.15.12.2...
CVE-2025-69352
creationtimestamp| type| source ---|---|--- 2026-01-06 20:29:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbrs5n7vdl2x 2026-01-07 08:38:59+00:00| seen| https://gist.github.com/Darkcrai86/fc41407cc3c909c772cb015eeb40044b...
CVE-2025-69352
The CVE-2025-69352 entry concerns a Missing Authorization vulnerability in The Events Calendar plugin for WordPress (The Events Calendar) affecting versions up to and including 6.15.12.2. The underlying issue is Incorrect/Missing Access Control, allowing an attacker with LOW privileges and networ...