46 matches found
CVE-2025-58623 WordPress Event Feed for Eventbrite Plugin <= 1.3.2 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bohemia Plugins Event Feed for Eventbrite event-feed-for-eventbrite allows DOM-Based XSS.This issue affects Event Feed for Eventbrite: from n/a through = 1.3.2...
WordPress plugin Event Feed for Eventbrite 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
PT-2025-35756
Name of the Vulnerable Software and Affected Versions: Bohemia Plugins Event Feed for Eventbrite versions through 1.3.2 Description: The software contains a DOM-Based Cross-site Scripting XSS issue due to improper neutralization of input during web page generation. Recommendations: Update Bohemia...
CVE-2025-47510
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fullworks Display Eventbrite Events widget-for-eventbrite-api allows PHP Local File Inclusion.This issue affects Display Eventbrite Events: from n/a through 6.3...
CVE-2025-47510
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fullworks Display Eventbrite Events widget-for-eventbrite-api allows PHP Local File Inclusion.This issue affects Display Eventbrite Events: from n/a through 6.3...
CVE-2025-47510 WordPress Display Eventbrite Events plugin < 6.3 - Local File Inclusion Vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fullworks Display Eventbrite Events widget-for-eventbrite-api allows PHP Local File Inclusion.This issue affects Display Eventbrite Events: from n/a through 6.3...
CVE-2025-47510
CVE-2025-47510 is a WordPress Display Eventbrite Events vulnerability: an authenticated (Contributor+) Local File Inclusion due to improper filename control in include/require statements. Affected software: Display Eventbrite Events = 6.3. If upgrade is not possible, apply vendor-provided mitigat...
CVE-2025-47510 WordPress Display Eventbrite Events < 6.3 - Local File Inclusion Vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fullworks Display Eventbrite Events allows PHP Local File Inclusion. This issue affects Display Eventbrite Events: from n/a through n/a...
WordPress Display Eventbrite Events plugin < 6.3 - Local File Inclusion Vulnerability
Local File Inclusion Vulnerability discovered by muhammad yudha in WordPress Plugin Display Eventbrite Events versions 6.3...
WordPress plugin Display Eventbrite Events 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers. A security vulnerability exists in the...
WordPress plugin Import Eventbrite Events 跨站脚本漏洞
WordPress and the WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exis...
PT-2024-17590 · WordPress · Import Eventbrite Events
Name of the Vulnerable Software and Affected Versions: Import Eventbrite Events plugin for WordPress versions up to, and including, 1.7.4 Description: The issue is related to Reflected Cross-Site Scripting via the page parameter due to insufficient input sanitization and output escaping. This...
Eventbrite Promoted Illegal Opioid Sales to People Searching for Addiction Recovery Help
A WIRED investigation found thousands of Eventbrite posts selling escort services and drugs like Xanax and oxycodone—some of which the company’s algorithm recommended alongside addiction recovery events...
WordPress Show Eventbrite Events – Event Feed for Eventbrite Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)
Software Show Eventbrite Events – Event Feed for Eventbrite Type Plugin Vulnerable versions = 1.1.1 Fixed in 1.1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 896a8e4be5fa Credi...
WordPress Display Eventbrite Events Plugin < 5.3.3 is vulnerable to Cross Site Scripting (XSS)
Software Display Eventbrite Events Type Plugin Vulnerable versions 5.3.3 Fixed in 5.3.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Fullworks Plugins PSID b65580fd09a1 Credits Rafie Muhammad...
WordPress Show Eventbrite Events – Event Feed for Eventbrite plugin < 1.0.7 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Show Eventbrite Events – Event Feed for Eventbrite plugin versions 1.0.7. Solution Update the WordPress Show Eventbrite Events – Event Feed for Eventbrite plugin to the latest available version at leas...
WordPress Show Eventbrite Events – Event Feed for Eventbrite plugin < 1.0.7 - Sensitive Information Disclosure vulnerability
Sensitive Information Disclosure vulnerability discovered in WordPress Show Eventbrite Events – Event Feed for Eventbrite plugin versions 1.0.7. Solution Update the WordPress Show Eventbrite Events – Event Feed for Eventbrite plugin to the latest available version at least 1.0.7...
WordPress Display Eventbrite Events plugin < 4.4.8 - Sensitive Information Disclosure vulnerability
Sensitive Information Disclosure vulnerability discovered in WordPress Display Eventbrite Events plugin versions 4.4.8. Solution Update the WordPress Display Eventbrite Events plugin to the latest available version at least 4.4.8...
WordPress Display Eventbrite Events plugin < 4.4.8 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Display Eventbrite Events plugin versions 4.4.8. Solution Update the WordPress Display Eventbrite Events plugin to the latest available version at least 4.4.8...
eventbrite.com XSS vulnerability
Open Bug Bounty ID: OBB-639099 Description| Value ---|--- Affected Website:| eventbrite.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...