3 matches found
CVE-2023-6447
The EventPrime WordPress plugin before 3.3.6 lacks authentication and authorization, allowing unauthenticated visitors to access private and password protected Events by guessing their numeric id/event name...
CVE-2023-6447 EventPrime < 3.3.6 - Unauthenticated Event Access
The EventPrime WordPress plugin before 3.3.6 lacks authentication and authorization, allowing unauthenticated visitors to access private and password protected Events by guessing their numeric id/event name...
CVE-2023-6447
The EventPrime WordPress plugin before 3.3.6 is vulnerable due to lack of authentication and authorization, allowing unauthenticated users to access private and password-protected events by guessing the numeric ID or event name. Affected versions: prior to 3.3.6. Impact: exposure of private event...