Lucene search
K

437 matches found

Vulnrichment
Vulnrichment
added 2025/12/09 2:52 p.m.2 views

CVE-2025-63006 WordPress EventPrime plugin <= 4.2.4.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EventPrime: from n/a through = 4.2.4.1...

4.3CVSS6.6AI score0.00187EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/09 2:52 p.m.1 views

CVE-2025-63007 WordPress EventPrime plugin <= 4.2.4.1 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Retrieve Embedded Sensitive Data.This issue affects EventPrime: from n/a through = 4.2.4.1...

4.3CVSS6.5AI score0.00223EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 2:52 p.m.18 views

CVE-2025-63007 WordPress EventPrime plugin <= 4.2.4.1 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Retrieve Embedded Sensitive Data.This issue affects EventPrime: from n/a through = 4.2.4.1...

4.3CVSS0.00223EPSS
Exploits0References1
CVE
CVE
added 2025/12/09 2:52 p.m.6 views

CVE-2025-63007

CVE-2025-63007 is a WordPress EventPrime plugin vulnerability (versions

4.3CVSS6.5AI score0.00223EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 2:52 p.m.21 views

CVE-2025-63006 WordPress EventPrime plugin <= 4.2.4.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EventPrime: from n/a through = 4.2.4.1...

4.3CVSS0.00187EPSS
Exploits0References1
CVE
CVE
added 2025/12/09 2:52 p.m.10 views

CVE-2025-63006

CVE-2025-63006 is a Missing Authorization vulnerability in Metagauss EventPrime (WordPress plugin: EventPrime – Events Calendar, Bookings and Tickets) affecting versions from n/a up to 4.2.4.1. The CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N) yields a base score of 4.3 (Medium). Multiple...

4.3CVSS6.6AI score0.00187EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-50026

Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EventPrime: from n/a through = 4.2.4.1...

7AI score0.00187EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.3 views

PT-2025-50027

Insertion of Sensitive Information Into Sent Data vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Retrieve Embedded Sensitive Data.This issue affects EventPrime: from n/a through = 4.2.4.1...

6.9AI score0.00223EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.5 views

WordPress plugin EventPrime 安全漏洞

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. An information disclosure vulnerability exists in the WordPress plugin EventPrime, which can be...

4.3CVSS5.9AI score0.00223EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.3 views

WordPress plugin EventPrime 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

4.3CVSS6.5AI score0.00187EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/11/10 1:45 a.m.6 views

WordPress EventPrime plugin <= 4.2.0.0 - Missing Authorization to Authenticated (Subscriber+) Booking Note Creation vulnerability

Missing Authorization to Authenticated Subscriber+ Booking Note Creation vulnerability discovered by Brian Mungai in WordPress Plugin EventPrime versions = 4.2.0.0...

4.3CVSS6.7AI score0.00214EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/11/08 7:15 a.m.4 views

CVE-2025-12498

The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to unauthorized booking note creation due to a missing capability check on the 'bookingaddnotes' function in all versions up to, and including, 4.2.0.0. This makes it possible for authenticated attackers, wi...

4.3CVSS0.00214EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/08 6:39 a.m.3 views

CVE-2025-12498 EventPrime – Events Calendar, Bookings and Tickets <= 4.2.0.0 - Missing Authorization to Authenticated (Subscriber+) Booking Note Creation

The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to unauthorized booking note creation due to a missing capability check on the 'bookingaddnotes' function in all versions up to, and including, 4.2.0.0. This makes it possible for authenticated attackers, wi...

4.3CVSS4.6AI score0.00214EPSS
Exploits0References3
CVE
CVE
added 2025/11/08 6:39 a.m.9 views

CVE-2025-12498

CVE-2025-12498 affects the WordPress plugin EventPrime – Events Calendar, Bookings and Tickets. The issue is a missing capability check in the booking_add_notes function across versions up to and including 4.2.0.0, allowing authenticated users with Subscriber-level access or higher to create note...

4.3CVSS4.7AI score0.00214EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/11/08 12:0 a.m.3 views

WordPress plugin EventPrime 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

4.3CVSS6.2AI score0.00214EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/11/08 12:0 a.m.4 views

PT-2025-45556

Name of the Vulnerable Software and Affected Versions EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress versions up to and including 4.2.0.0 Description The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is susceptible to unauthorized booking note...

4.3CVSS5.8AI score0.00214EPSS
Exploits0References6
Patchstack
Patchstack
added 2025/11/06 1:24 p.m.4 views

WordPress EventPrime plugin <= 4.2.4.1 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by daroo in WordPress Plugin EventPrime versions = 4.2.4.1...

4.3CVSS7AI score0.00223EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/11/06 5:14 a.m.6 views

WordPress EventPrime plugin <= 4.2.4.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by daroo in WordPress Plugin EventPrime versions = 4.2.4.1...

4.3CVSS7AI score0.00187EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-15306

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.00257EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-49929

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00437EPSS
Exploits0References1
Rows per page
Query Builder