104 matches found
WordPress WpEvently plugin <= 5.0.4 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Que Thanh Tuan - Blue Rock in WordPress Plugin WpEvently versions = 5.0.4...
CVE-2025-66082
Missing Authorization vulnerability in magepeopleteam WpEvently mage-eventpress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WpEvently: from n/a through = 5.0.4...
EUVD-2025-198465
Missing Authorization vulnerability in magepeopleteam WpEvently mage-eventpress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WpEvently: from n/a through = 5.0.4...
EUVD-2025-198464
Missing Authorization vulnerability in magepeopleteam WpEvently mage-eventpress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WpEvently: from n/a through = 5.0.4...
CVE-2025-66082
CVE-2025-66082 describes a missing authorization vulnerability in the WordPress plugin WpEvently (mage-eventpress) from the magepeopleteam. Affected versions are <= 5.0.4. The issue stems from improper access control configuration, enabling an attacker to exploit missing authorization. The pro...
CVE-2025-66082 WordPress WpEvently plugin <= 5.0.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in magepeopleteam WpEvently mage-eventpress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WpEvently: from n/a through = 5.0.4...
CVE-2025-66082 WordPress WpEvently plugin <= 5.0.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in magepeopleteam WpEvently mage-eventpress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WpEvently: from n/a through = 5.0.4...
CVE-2025-66083
CVE-2025-66083 represents a Missing Authorization vulnerability in the WordPress WpEvently mage-eventpress plugin (
CVE-2025-66083 WordPress WpEvently plugin <= 5.0.4 - Broken Access Control vulnerability
Missing Authorization vulnerability in magepeopleteam WpEvently mage-eventpress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WpEvently: from n/a through = 5.0.4...
WordPress plugin WpEvently 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...
WordPress plugin WpEvently 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...
EUVD-2025-8306
Malicious code in bioql PyPI...
EUVD-2025-8315
Malicious code in bioql PyPI...
EUVD-2025-10487
Malicious code in bioql PyPI...
EUVD-2025-24689
Malicious code in bioql PyPI...
CVE-2025-54742
Deserialization of Untrusted Data vulnerability in magepeopleteam WpEvently mage-eventpress allows Object Injection.This issue affects WpEvently: from n/a through = 4.4.8...
CVE-2025-54742
Deserialization of Untrusted Data vulnerability in magepeopleteam WpEvently mage-eventpress allows Object Injection.This issue affects WpEvently: from n/a through = 4.4.8...
CVE-2025-54742 WordPress WpEvently Plugin <= 4.4.8 - PHP Object Injection Vulnerability
Deserialization of Untrusted Data vulnerability in magepeopleteam WpEvently allows Object Injection. This issue affects WpEvently: from n/a through 4.4.8...
CVE-2025-54742 WordPress WpEvently Plugin <= 4.4.8 - PHP Object Injection Vulnerability
Deserialization of Untrusted Data vulnerability in magepeopleteam WpEvently mage-eventpress allows Object Injection.This issue affects WpEvently: from n/a through = 4.4.8...
CVE-2025-54742
CVE-2025-54742 corresponds to a PHP Object Injection in the WordPress plugin WpEvently (vulnerable through 4.4.8). The root cause is deserialization of untrusted data, enabling authenticated attackers (Contributor+ level) to trigger object injection. Public sources list the affected software as W...