5 matches found
CVE-2025-68007
Missing Authorization vulnerability in Event Espresso Event Espresso 4 Decaf event-espresso-decaf allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Event Espresso 4 Decaf: from n/a through = 5.0.37.decaf...
CVE-2025-68007
Missing Authorization vulnerability in Event Espresso Event Espresso 4 Decaf event-espresso-decaf allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Event Espresso 4 Decaf: from n/a through = 5.0.37.decaf...
CVE-2025-68007
Missing Authorization vulnerability in Event Espresso Event Espresso 4 Decaf event-espresso-decaf allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Event Espresso 4 Decaf: from n/a through = 5.0.37.decaf...
PT-2026-4051
Name of the Vulnerable Software and Affected Versions Event Espresso versions through 5.0.37.decaf Description An authorization issue exists in Event Espresso 4 Decaf, allowing exploitation of incorrectly configured access control security levels. Recommendations Update Event Espresso 4 Decaf to ...
Cross-site scripting vulnerability in wordpress plugin event-espresso-decaf
WordPress is a blogging platform developed using the PHP language that allows users to set up their own websites on servers that support PHP and MySQL databases. WordPress can also be used as a content management system CMS. The Wordpress plugin event-espresso-decaf is vulnerable to an xss...