CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2025/05/23 9:26 a.m.•4 views

CVE-2024-12711

The RSVP and Event Management plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on several AJAX functions like bulkdeleteattendees and bulkdeletequestions in all versions up to, and including, 2.7.13. This makes it possible for unauthenticated attackers t...

5.3CVSS6.5AI score0.00344EPSS

Exploits0References1

Positive Technologies•added 2025/01/07 12:0 a.m.•1 views

PT-2025-1933 · WordPress · Rsvp/Event Management Plugin For Wordpress

Name of the Vulnerable Software and Affected Versions: RSVP and Event Management plugin for WordPress versions up to, and including, 2.7.13 Description: The issue allows unauthorized access due to a missing capability check on several AJAX functions, such as bulk delete attendees and bulk delete...

5.3CVSS7.2AI score0.00344EPSS

Exploits0References6

CNNVD•added 2025/01/07 12:0 a.m.•1 views

WordPress plugin RSVP and Event Management 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPress...

5.3CVSS7.9AI score0.00344EPSS

Exploits0References3

OSV•added 2022/12/02 9:15 p.m.•5 views

CVE-2022-4220

The Chained Quiz plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.3.2.4. This is due to missing nonce validation on the listquestions function. This makes it possible for unauthenticated attackers to delete questions from quizzes via a forged...

4.3CVSS5.6AI score0.00119EPSS

Exploits1References4