Lucene search
K

437 matches found

Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.7 views

PT-2026-49460

Subscriber Cross Site Scripting XSS in EventPrime = 4.3.2.1 versions...

7.1CVSS5.1AI score0.00354EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.8 views

PT-2026-49394

Subscriber Insecure Direct Object References IDOR in EventPrime = 4.3.0.0 versions...

7.1CVSS5.2AI score0.00278EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/05 7:16 p.m.9 views

CVE-2026-42669

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0...

7.5CVSS5.4AI score0.00202EPSS
Exploits0References1
NVD
NVD
added 2026/06/02 12:16 p.m.15 views

CVE-2026-42669

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0...

7.5CVSS0.00202EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/02 10:40 a.m.39 views

CVE-2026-42669 WordPress EventPrime plugin <= 4.3.2.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0...

7.5CVSS0.00202EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/02 10:40 a.m.9 views

CVE-2026-42669 WordPress EventPrime plugin <= 4.3.2.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0...

7.5CVSS5.8AI score0.00202EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/02 10:40 a.m.9 views

CVE-2026-42669

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0...

7.5CVSS5.8AI score0.00202EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/02 10:40 a.m.11 views

EUVD-2026-33907

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0...

7.5CVSS5.8AI score0.00202EPSS
Exploits0References1
CVE
CVE
added 2026/06/02 10:40 a.m.21 views

CVE-2026-42669

CVE-2026-42669 affects WordPress EventPrime plugin up to version 4.3.2.0, with a Missing Authorization/Broken Access Control vulnerability stemming from incorrectly configured access control security levels. CVSS v3.1 base score 7.5 (HIGH), impact to integrity is high while confidentiality/availa...

7.5CVSS5.8AI score0.00202EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.11 views

PT-2026-45733

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0...

7.5CVSS5.8AI score0.00202EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.4 views

WordPress plugin EventPrime 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

7.5CVSS5.5AI score0.00202EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/05/25 4:19 a.m.12 views

WordPress EventPrime plugin <= 4.3.2.1 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by hhhai in WordPress Plugin EventPrime versions = 4.3.2.1...

5.8AI score0.00317EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/24 8:59 a.m.9 views

WordPress EventPrime plugin <= 4.3.2.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by hhhai in WordPress Plugin EventPrime versions = 4.3.2.1...

5.8AI score0.00354EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/05/12 8:23 p.m.13 views

WordPress EventPrime plugin <= 4.3.2.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Evan in WordPress Plugin EventPrime versions = 4.3.2.0...

5.8AI score0.00202EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/04/20 10:20 a.m.7 views

WordPress EventPrime plugin <= 4.3.0.0 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by James Pirstin in WordPress Plugin EventPrime versions = 4.3.0.0...

5.8AI score0.00278EPSS
Exploits0Affected Software1
Packet Storm
Packet Storm
added 2026/04/10 12:0 a.m.175 views

📄 WordPress EventPrime 4.2.8.1 Arbitrary File Upload

WordPress EventPrime plugin versions 4.2.8.1 and below suffer from an unauthenticated arbitrary file upload vulnerability. CVE-2026-1657: Unauthenticated Arbitrary File Upload in EventPrime Plugin Disclaimer: This repository is created for educational purposes and ethical disclosure only. The...

5.3CVSS5.9AI score0.00379EPSS
Exploits3
GithubExploit
GithubExploit
added 2026/04/09 5:53 p.m.109 views

Exploit for CVE-2026-1657

CVE-2026-1657: Unauthenticated Arbitrary File Upload in EventP...

5.3CVSS5.8AI score0.00379EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2026/03/26 5:5 p.m.3 views

CVE-2025-69358

Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EventPrime: from n/a through = 4.2.6.0...

7.5CVSS5.8AI score0.00314EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 5:1 p.m.3 views

CVE-2026-24378

Deserialization of Untrusted Data vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Object Injection.This issue affects EventPrime: from n/a through = 4.2.8.0...

9.8CVSS5.8AI score0.0051EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:4 p.m.3 views

CVE-2026-25312

Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EventPrime: from n/a through = 4.2.8.3...

7.5CVSS5.9AI score0.00206EPSS
Exploits0References1
Rows per page
Query Builder