Lucene search
K

46 matches found

Cvelist
Cvelist
added 2025/09/03 2:36 p.m.12 views

CVE-2025-58623 WordPress Event Feed for Eventbrite Plugin <= 1.3.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bohemia Plugins Event Feed for Eventbrite event-feed-for-eventbrite allows DOM-Based XSS.This issue affects Event Feed for Eventbrite: from n/a through = 1.3.2...

6.5CVSS0.0019EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/03 12:0 a.m.2 views

WordPress plugin Event Feed for Eventbrite 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS5.9AI score0.0019EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/03 12:0 a.m.5 views

PT-2025-35756

Name of the Vulnerable Software and Affected Versions: Bohemia Plugins Event Feed for Eventbrite versions through 1.3.2 Description: The software contains a DOM-Based Cross-site Scripting XSS issue due to improper neutralization of input during web page generation. Recommendations: Update Bohemia...

6.5CVSS5.8AI score0.0019EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/09 3:23 p.m.8 views

CVE-2025-47510

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fullworks Display Eventbrite Events widget-for-eventbrite-api allows PHP Local File Inclusion.This issue affects Display Eventbrite Events: from n/a through 6.3...

7.5CVSS7.2AI score0.0061EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 3:16 p.m.8 views

CVE-2025-47510

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fullworks Display Eventbrite Events widget-for-eventbrite-api allows PHP Local File Inclusion.This issue affects Display Eventbrite Events: from n/a through 6.3...

7.5CVSS0.0061EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/07 2:20 p.m.20 views

CVE-2025-47510 WordPress Display Eventbrite Events plugin < 6.3 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fullworks Display Eventbrite Events widget-for-eventbrite-api allows PHP Local File Inclusion.This issue affects Display Eventbrite Events: from n/a through 6.3...

7.5CVSS0.0061EPSS
Exploits0References1
CVE
CVE
added 2025/05/07 2:20 p.m.41 views

CVE-2025-47510

CVE-2025-47510 is a WordPress Display Eventbrite Events vulnerability: an authenticated (Contributor+) Local File Inclusion due to improper filename control in include/require statements. Affected software: Display Eventbrite Events = 6.3. If upgrade is not possible, apply vendor-provided mitigat...

7.5CVSS7.2AI score0.0061EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/07 2:20 p.m.8 views

CVE-2025-47510 WordPress Display Eventbrite Events < 6.3 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fullworks Display Eventbrite Events allows PHP Local File Inclusion. This issue affects Display Eventbrite Events: from n/a through n/a...

7.5CVSS7.7AI score0.0061EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/07 12:35 p.m.5 views

WordPress Display Eventbrite Events plugin < 6.3 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by muhammad yudha in WordPress Plugin Display Eventbrite Events versions 6.3...

7.5CVSS8.2AI score0.0061EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2025/05/07 12:0 a.m.3 views

WordPress plugin Display Eventbrite Events 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers. A security vulnerability exists in the...

7.5CVSS7.5AI score0.0061EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/14 12:0 a.m.3 views

WordPress plugin Import Eventbrite Events 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exis...

6.1CVSS7.8AI score0.00363EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/12/14 12:0 a.m.4 views

PT-2024-17590 · WordPress · Import Eventbrite Events

Name of the Vulnerable Software and Affected Versions: Import Eventbrite Events plugin for WordPress versions up to, and including, 1.7.4 Description: The issue is related to Reflected Cross-Site Scripting via the page parameter due to insufficient input sanitization and output escaping. This...

6.1CVSS6.8AI score0.00363EPSS
Exploits0References8
Wired Threat Level
Wired Threat Level
added 2024/05/21 10:30 a.m.12 views

Eventbrite Promoted Illegal Opioid Sales to People Searching for Addiction Recovery Help

A WIRED investigation found thousands of Eventbrite posts selling escort services and drugs like Xanax and oxycodone—some of which the company’s algorithm recommended alongside addiction recovery events...

7.3AI score
Exploits0
Patchstack
Patchstack
added 2023/07/18 12:0 a.m.8 views

WordPress Show Eventbrite Events – Event Feed for Eventbrite Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Show Eventbrite Events – Event Feed for Eventbrite Type Plugin Vulnerable versions = 1.1.1 Fixed in 1.1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 896a8e4be5fa Credi...

6.3AI score0.00284EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2023/07/18 12:0 a.m.9 views

WordPress Display Eventbrite Events Plugin < 5.3.3 is vulnerable to Cross Site Scripting (XSS)

Software Display Eventbrite Events Type Plugin Vulnerable versions 5.3.3 Fixed in 5.3.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Fullworks Plugins PSID b65580fd09a1 Credits Rafie Muhammad...

6.2AI score0.00284EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.11 views

WordPress Show Eventbrite Events – Event Feed for Eventbrite plugin < 1.0.7 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Show Eventbrite Events – Event Feed for Eventbrite plugin versions 1.0.7. Solution Update the WordPress Show Eventbrite Events – Event Feed for Eventbrite plugin to the latest available version at leas...

4.1AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.10 views

WordPress Show Eventbrite Events – Event Feed for Eventbrite plugin < 1.0.7 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Show Eventbrite Events – Event Feed for Eventbrite plugin versions 1.0.7. Solution Update the WordPress Show Eventbrite Events – Event Feed for Eventbrite plugin to the latest available version at least 1.0.7...

2.5AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.11 views

WordPress Display Eventbrite Events plugin < 4.4.8 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Display Eventbrite Events plugin versions 4.4.8. Solution Update the WordPress Display Eventbrite Events plugin to the latest available version at least 4.4.8...

2.4AI score
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/02/28 12:0 a.m.11 views

WordPress Display Eventbrite Events plugin < 4.4.8 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Display Eventbrite Events plugin versions 4.4.8. Solution Update the WordPress Display Eventbrite Events plugin to the latest available version at least 4.4.8...

3.9AI score
Exploits0References2Affected Software1
Openbugbounty
Openbugbounty
added 2018/07/01 5:58 a.m.5 views

eventbrite.com XSS vulnerability

Open Bug Bounty ID: OBB-639099 Description| Value ---|--- Affected Website:| eventbrite.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Rows per page
Query Builder