Lucene search
+L

104 matches found

Patchstack
Patchstack
added 2025/11/30 8:36 a.m.13 views

WordPress WpEvently plugin <= 5.0.4 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Que Thanh Tuan - Blue Rock in WordPress Plugin WpEvently versions = 5.0.4...

4.3CVSS7AI score0.00235EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/11/22 12:34 p.m.15 views

CVE-2025-66082

Missing Authorization vulnerability in magepeopleteam WpEvently mage-eventpress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WpEvently: from n/a through = 5.0.4...

5.3CVSS7AI score0.00235EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/21 3:31 p.m.4 views

EUVD-2025-198465

Missing Authorization vulnerability in magepeopleteam WpEvently mage-eventpress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WpEvently: from n/a through = 5.0.4...

4.3CVSS6.5AI score0.00235EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/21 3:31 p.m.5 views

EUVD-2025-198464

Missing Authorization vulnerability in magepeopleteam WpEvently mage-eventpress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WpEvently: from n/a through = 5.0.4...

4.3CVSS6.5AI score0.00227EPSS
Exploits0References2
CVE
CVE
added 2025/11/21 12:29 p.m.12 views

CVE-2025-66082

CVE-2025-66082 describes a missing authorization vulnerability in the WordPress plugin WpEvently (mage-eventpress) from the magepeopleteam. Affected versions are &lt;= 5.0.4. The issue stems from improper access control configuration, enabling an attacker to exploit missing authorization. The pro...

5.3CVSS6.6AI score0.00235EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/21 12:29 p.m.12 views

CVE-2025-66082 WordPress WpEvently plugin <= 5.0.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in magepeopleteam WpEvently mage-eventpress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WpEvently: from n/a through = 5.0.4...

5.3CVSS0.00235EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/21 12:29 p.m.2 views

CVE-2025-66082 WordPress WpEvently plugin <= 5.0.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in magepeopleteam WpEvently mage-eventpress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WpEvently: from n/a through = 5.0.4...

5.3CVSS6.6AI score0.00235EPSS
Exploits0References1
CVE
CVE
added 2025/11/21 12:29 p.m.10 views

CVE-2025-66083

CVE-2025-66083 represents a Missing Authorization vulnerability in the WordPress WpEvently mage-eventpress plugin (

5.3CVSS6.6AI score0.00227EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/21 12:29 p.m.5 views

CVE-2025-66083 WordPress WpEvently plugin <= 5.0.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in magepeopleteam WpEvently mage-eventpress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WpEvently: from n/a through = 5.0.4...

5.3CVSS6.6AI score0.00227EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/21 12:0 a.m.6 views

WordPress plugin WpEvently 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

5.3CVSS6.4AI score0.00227EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/21 12:0 a.m.6 views

WordPress plugin WpEvently 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

5.3CVSS6.5AI score0.00235EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-8306

Malicious code in bioql PyPI...

7.5CVSS9AI score0.0075EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-8315

Malicious code in bioql PyPI...

5.3CVSS9AI score0.00346EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-10487

Malicious code in bioql PyPI...

8.8CVSS9AI score0.0045EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-24689

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.00248EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/30 6:18 p.m.3 views

CVE-2025-54742

Deserialization of Untrusted Data vulnerability in magepeopleteam WpEvently mage-eventpress allows Object Injection.This issue affects WpEvently: from n/a through = 4.4.8...

8.8CVSS5.9AI score0.00339EPSS
Exploits0References1
NVD
NVD
added 2025/08/28 1:16 p.m.4 views

CVE-2025-54742

Deserialization of Untrusted Data vulnerability in magepeopleteam WpEvently mage-eventpress allows Object Injection.This issue affects WpEvently: from n/a through = 4.4.8...

8.8CVSS0.00339EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/28 12:37 p.m.1 views

CVE-2025-54742 WordPress WpEvently Plugin <= 4.4.8 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in magepeopleteam WpEvently allows Object Injection. This issue affects WpEvently: from n/a through 4.4.8...

8.8CVSS6.5AI score0.00339EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/28 12:37 p.m.11 views

CVE-2025-54742 WordPress WpEvently Plugin <= 4.4.8 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in magepeopleteam WpEvently mage-eventpress allows Object Injection.This issue affects WpEvently: from n/a through = 4.4.8...

8.8CVSS0.00339EPSS
Exploits0References1
CVE
CVE
added 2025/08/28 12:37 p.m.20 views

CVE-2025-54742

CVE-2025-54742 corresponds to a PHP Object Injection in the WordPress plugin WpEvently (vulnerable through 4.4.8). The root cause is deserialization of untrusted data, enabling authenticated attackers (Contributor+ level) to trigger object injection. Public sources list the affected software as W...

8.8CVSS5.9AI score0.00339EPSS
Exploits0References1
Rows per page
Query Builder