Lucene search
+L

3 matches found

Vulnrichment
Vulnrichment
added 2024/09/10 11:30 a.m.25 views

CVE-2024-8369 EventPrime <= 4.0.4.3 - Missing Authorization to Unauthenticated Private or Password-Protected Events Disclosure

The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to unauthorized access to Private or Password-protected events due to missing authorization checks in all versions up to, and including, 4.0.4.3. This makes it possible for unauthenticated attackers to view...

5.3CVSS7AI score0.00349EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/09/10 11:30 a.m.25 views

CVE-2024-8369 EventPrime <= 4.0.4.3 - Missing Authorization to Unauthenticated Private or Password-Protected Events Disclosure

The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to unauthorized access to Private or Password-protected events due to missing authorization checks in all versions up to, and including, 4.0.4.3. This makes it possible for unauthenticated attackers to view...

5.3CVSS0.00349EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/09/10 12:0 a.m.9 views

WordPress EventPrime Plugin <= 4.0.4.3 is vulnerable to Broken Access Control

Software EventPrime Type Plugin Vulnerable versions = 4.0.4.3 Fixed in 4.0.4.4 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-8369 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID b15b481a5c2e Credits Miguel Santareno Required...

5.3CVSS6.6AI score0.00349EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder