CVE-2019-15889

The download-manager plugin before 2.9.94 for WordPress has XSS via the category shortcode feature, as demonstrated by the orderby or searchpublishdate parameter...

CVE-2019-15868

The affiliates-manager plugin before 2.6.6 for WordPress has CSRF...

WordPress events-manager plugin cross-site scripting vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A cross-site scripting vulnerability exists in the WordPress...

WordPress events-manager plugin cross-site scripting vulnerability (CNVD-2019-30594)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A cross-site scripting vulnerability exists in the WordPress...

CVE-2012-6716

The events-manager plugin before 5.1.7 for WordPress has XSS via JSON call links...

CVE-2013-7479

The events-manager plugin before 5.3.9 for WordPress has XSS in the search form field...

CVE-2012-6716

The events-manager plugin before 5.1.7 for WordPress has XSS via JSON call links...

Design/Logic Flaw

The events-manager plugin before 5.3.9 for WordPress has XSS in the search form field...

Design/Logic Flaw

The events-manager plugin before 5.5.2 for WordPress has XSS in the booking form...

CVE-2013-7478

The events-manager plugin before 5.5 for WordPress has XSS via EMTicket::getpost...

CVE-2013-7477

The CVE-2013-7477 entry concerns the WordPress Events Manager plugin, with an XSS flaw in the booking form present in versions prior to 5.5.2. Affected software: events-manager plugin for WordPress; vulnerable component: booking form input handling. Root cause per sources is an XSS vulnerability,...

PT-2019-7029 · WordPress · Events Manager

Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.3.6.1 Description: The issue affects the events-manager plugin for WordPress, allowing XSS attacks via the booking form and admin areas. Recommendations: For versions prior to 5.3.6.1, update to versi...

PT-2019-6824 · WordPress · Events Manager

Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.1.7 Description: The issue concerns a cross-site scripting XSS vulnerability via JSON call links. This type of vulnerability allows an attacker to inject malicious scripts into a website, potentially...

PT-2019-7028 · WordPress · Events Manager

Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.3.9 Description: The issue concerns a Cross-Site Scripting XSS flaw in the search form field of the events-manager plugin for WordPress. Recommendations: For versions prior to 5.3.9, update to version...

PT-2019-7027 · WordPress · Events Manager

Name of the Vulnerable Software and Affected Versions: events-manager plugin versions prior to 5.5 Description: The issue concerns a cross-site scripting XSS flaw. It affects the events-manager plugin for WordPress, specifically via the EM Ticket::get post function. Recommendations: For versions...

CVE-2015-9299

The events-manager plugin before 5.5.7.1 for WordPress has DOM XSS...

CVE-2012-6713

The job-manager plugin before 0.7.19 for WordPress has multiple XSS issues...

CVE-2015-9298

The events-manager plugin before 5.6 for WordPress has code injection...

CVE-2015-9297

The events-manager plugin before 5.6 for WordPress has XSS...

Code injection

The events-manager plugin before 5.6 for WordPress has code injection...