Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-14869

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.0465EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-53679

Malicious code in bioql PyPI...

8.8CVSS9.1AI score0.00563EPSS
Exploits0References1
NVD
NVD
added 2025/08/23 6:15 a.m.3 views

CVE-2025-7813

The Events Calendar, Event Booking, Registrations and Event Tickets – Eventin plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.0.37 via the proxyimage function. This makes it possible for unauthenticated attackers to make web requests to...

7.2CVSS0.00274EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/08/08 6:26 p.m.48 views

CVE-2025-4796 Eventin <= 4.0.34 - Authenticated (Contributor+) Privilege Escalation via User Email Change/Account Takeover

The Eventin plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.0.34. This is due to the plugin not properly validating a user's identity or capability prior to updating their details like email in the...

8.8CVSS0.00526EPSS
Exploits3References3
Vulnrichment
Vulnrichment
added 2025/05/23 12:43 p.m.16 views

CVE-2025-47539 WordPress Eventin plugin <= 4.0.26 - Privilege Escalation Vulnerability

Incorrect Privilege Assignment vulnerability in Arraytics Eventin wp-event-solution allows Privilege Escalation.This issue affects Eventin: from n/a through = 4.0.26...

9.8CVSS7.4AI score0.3092EPSS
Exploits4References1
Cvelist
Cvelist
added 2025/05/23 12:43 p.m.46 views

CVE-2025-47539 WordPress Eventin plugin <= 4.0.26 - Privilege Escalation Vulnerability

Incorrect Privilege Assignment vulnerability in Arraytics Eventin wp-event-solution allows Privilege Escalation.This issue affects Eventin: from n/a through = 4.0.26...

9.8CVSS0.3092EPSS
Exploits4References1
Vulnrichment
Vulnrichment
added 2025/05/14 11:37 a.m.14 views

CVE-2025-47445 WordPress Eventin plugin <= 4.0.26 - Arbitrary File Download Vulnerability

Relative Path Traversal vulnerability in Arraytics Eventin wp-event-solution allows Path Traversal.This issue affects Eventin: from n/a through = 4.0.26...

7.5CVSS5.9AI score0.0465EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/14 11:37 a.m.125 views

CVE-2025-47445 WordPress Eventin plugin <= 4.0.26 - Arbitrary File Download Vulnerability

Relative Path Traversal vulnerability in Arraytics Eventin wp-event-solution allows Path Traversal.This issue affects Eventin: from n/a through = 4.0.26...

7.5CVSS0.0465EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/05/08 12:0 a.m.8 views

WordPress plugin Event Manager, Events Calendar, Tickets, Registrations – Eventin 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin Event Manager...

7.5CVSS7.8AI score0.00588EPSS
Exploits1References2
CVE
CVE
added 2024/12/31 10:2 a.m.68 views

CVE-2024-56213

WordPress Plugin Eventin vulnerable to Path Traversal (pattern '.../...//') in versions n/a–4.0.7, enabling local file access. Root cause: path traversal in Eventin handled via Contributor+ LFI. Affected product: Themewinter Eventin WordPress plugin (

8.8CVSS7.2AI score0.00546EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder