Lucene search
+L

388 matches found

Prion
Prion
added 2019/08/13 5:15 p.m.18 views

Cross site scripting

The events-manager plugin before 5.6 for WordPress has XSS...

4.3CVSS7.2AI score0.00924EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2019/08/13 5:15 p.m.17 views

Code injection

The events-manager plugin before 5.6 for WordPress has code injection...

7.5CVSS7.9AI score0.021EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/08/13 4:43 p.m.67 views

CVE-2015-9297

The CVE-2015-9297 entry refers to the WordPress Events Manager plugin, affected up to versions earlier than 5.6, which contains an XSS vulnerability in the plugin. The connected Red Hat and CNVD/CVE records corroborate an XSS issue in this plugin. The NVD metrics (CVSS v3.1 base score 6.1 MEDIUM;...

6.1CVSS6.4AI score0.00924EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/08/13 4:43 p.m.19 views

CVE-2015-9297

The events-manager plugin before 5.6 for WordPress has XSS...

6.4AI score0.00924EPSS
Exploits0References2
CVE
CVE
added 2019/08/13 4:42 p.m.69 views

CVE-2015-9298

The CVE-2015-9298 entry concerns the WordPress events-manager plugin, specifically versions prior to 5.6, which is affected by code injection. Multiple sources (NVD entry and repeat citations across Red Hat, CNVD, CVE lists, and WPVulnDB/PT Security) confirm the issue as a code injection flaw in ...

9.8CVSS9.7AI score0.021EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/08/13 4:42 p.m.22 views

CVE-2015-9298

The events-manager plugin before 5.6 for WordPress has code injection...

9.9AI score0.021EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/08/13 4:42 p.m.16 views

CVE-2015-9299

The events-manager plugin before 5.5.7.1 for WordPress has DOM XSS...

6.4AI score0.00923EPSS
Exploits0References1
CVE
CVE
added 2019/08/13 4:42 p.m.51 views

CVE-2015-9299

CVE-2015-9299 is a DOM XSS vulnerability in the WordPress Events Manager plugin prior to 5.5.7.1. The root cause is DOM-based XSS in the events-manager component, leading to potential client-side code execution with low integrity impact and no confidentiality/availability impact according to CVSS...

6.1CVSS6.4AI score0.00923EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/13 4:41 p.m.17 views

CVE-2015-9300

The events-manager plugin before 5.5.7 for WordPress has multiple XSS issues...

6.1AI score0.00923EPSS
Exploits0References1
CVE
CVE
added 2019/08/13 4:41 p.m.52 views

CVE-2015-9300

The CVE-2015-9300 entry concerns the WordPress Events Manager plugin, specifically versions prior to 5.5.7. Multiple cross-site scripting (XSS) issues are reported in this plugin, affecting the plugin’s handling of user-supplied data and potentially enabling client-side code execution. Public ref...

6.1CVSS6.1AI score0.00923EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2019/08/13 12:0 a.m.7 views

PT-2019-7259 · WordPress · Events Manager

Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.5.7 Description: The issue concerns multiple XSS problems. Recommendations: For versions prior to 5.5.7, update to version 5.5.7 or later to resolve the issue...

6.1CVSS6.3AI score0.00923EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2019/08/13 12:0 a.m.5 views

PT-2019-7258 · WordPress · Events Manager

Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.5.7.1 Description: The issue is related to DOM XSS in the events-manager plugin for WordPress. Recommendations: For versions prior to 5.5.7.1, update to version 5.5.7.1 or later to resolve the issue...

6.1CVSS6.3AI score0.00923EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2019/08/13 12:0 a.m.6 views

PT-2019-7256 · WordPress · Events Manager

Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.6 Description: The issue concerns a cross-site scripting XSS problem. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world...

6.1CVSS6AI score0.00924EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2019/08/13 12:0 a.m.7 views

PT-2019-7257 · WordPress · Events Manager

Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.6 Description: The issue concerns code injection in the events-manager plugin for WordPress. Recommendations: For versions prior to 5.6, update to version 5.6 or later to resolve the issue...

9.8CVSS7.7AI score0.021EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2019/04/17 12:0 a.m.28 views

WordPress Events Manager Plugin < 5.9.5 XSS Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description scriptoid"1.3.6.1.4.1.25623.1.0.112564";...

4.8CVSS5.2AI score0.01209EPSS
Exploits1References3
Prion
Prion
added 2019/04/12 6:29 p.m.14 views

Design/Logic Flaw

The Events Manager plugin 5.9.4 for WordPress has XSS via the dbemeventreapprovedemailbody parameter to the wp-admin/edit.php?posttype=event&page=events-manager-options URI...

3.5CVSS4.9AI score0.01209EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2019/04/12 6:29 p.m.4 views

CVE-2018-13137

The Events Manager plugin 5.9.4 for WordPress has XSS via the dbemeventreapprovedemailbody parameter to the wp-admin/edit.php?posttype=event&page=events-manager-options URI...

4.8CVSS5.8AI score0.01209EPSS
Exploits1References4
NVD
NVD
added 2019/04/12 6:29 p.m.21 views

CVE-2018-13137

The Events Manager plugin 5.9.4 for WordPress has XSS via the dbemeventreapprovedemailbody parameter to the wp-admin/edit.php?posttype=event&page=events-manager-options URI...

4.8CVSS5AI score0.01209EPSS
Exploits1References4
CVE
CVE
added 2019/04/12 5:52 p.m.60 views

CVE-2018-13137

The CVE-2018-13137 entry affects the WordPress Events Manager plugin, version 5.9.4, with a cross-site scripting (XSS) flaw in the dbem_event_reapproved_email_body parameter used in the wp-admin/edit.php?post_type=event&page=events-manager-options URI. Public sources describe this as an XSS vulne...

4.8CVSS4.9AI score0.01209EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2019/04/12 5:52 p.m.28 views

CVE-2018-13137

The Events Manager plugin 5.9.4 for WordPress has XSS via the dbemeventreapprovedemailbody parameter to the wp-admin/edit.php?posttype=event&page=events-manager-options URI...

5AI score0.01209EPSS
Exploits1References4
Rows per page
Query Builder