CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2 days ago•32 views

CVE-2026-42669 WordPress EventPrime plugin <= 4.3.2.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0...

7.5CVSS0.00028EPSS

CVE•added 2 days ago•9 views

CVE-2026-42669

CVE-2026-42669 affects WordPress EventPrime plugin up to version 4.3.2.0, with a Missing Authorization/Broken Access Control vulnerability stemming from incorrectly configured access control security levels. CVSS v3.1 base score 7.5 (HIGH), impact to integrity is high while confidentiality/availa...

ATTACKERKB•added 2 days ago•5 views

CVE-2026-42669

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0...

EUVD•added 2 days ago•7 views

EUVD-2026-33907

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0...

Vulnrichment•added 2 days ago•3 views

CVE-2026-42669 WordPress EventPrime plugin <= 4.3.2.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0...

Positive Technologies•added 2 days ago•4 views

PT-2026-45733

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0...

Patchstack•added 2026/05/25 4:19 a.m.•5 views

WordPress EventPrime plugin <= 4.3.2.1 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by hhhai in WordPress Plugin EventPrime versions = 4.3.2.1...

5.8AI score

Patchstack•added 2026/05/24 8:59 a.m.•4 views

WordPress EventPrime plugin <= 4.3.2.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by hhhai in WordPress Plugin EventPrime versions = 4.3.2.1...

5.8AI score

Patchstack•added 2026/05/12 8:23 p.m.•8 views

WordPress EventPrime plugin <= 4.3.2.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Evan in WordPress Plugin EventPrime versions = 4.3.2.0...

5.8AI score0.00028EPSS

Patchstack•added 2026/04/20 10:20 a.m.•3 views

WordPress EventPrime plugin <= 4.3.0.0 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by James Pirstin in WordPress Plugin EventPrime versions = 4.3.0.0...

5.8AI score

Packet Storm•added 2026/04/10 12:0 a.m.•122 views

📄 WordPress EventPrime 4.2.8.1 Arbitrary File Upload

WordPress EventPrime plugin versions 4.2.8.1 and below suffer from an unauthenticated arbitrary file upload vulnerability. CVE-2026-1657: Unauthenticated Arbitrary File Upload in EventPrime Plugin Disclaimer: This repository is created for educational purposes and ethical disclosure only. The...

5.3CVSS5.9AI score0.0014EPSS

Exploits3

GithubExploit•added 2026/04/09 5:53 p.m.•78 views

Exploit for CVE-2026-1657

CVE-2026-1657: Unauthenticated Arbitrary File Upload in EventP...

5.3CVSS5.8AI score0.0014EPSS

Exploits3

RedhatCVE•added 2026/03/26 5:5 p.m.•1 views

CVE-2025-69358

Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EventPrime: from n/a through = 4.2.6.0...

7.5CVSS5.8AI score0.00042EPSS

RedhatCVE•added 2026/03/26 5:1 p.m.•0 views

CVE-2026-24378

Deserialization of Untrusted Data vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Object Injection.This issue affects EventPrime: from n/a through = 4.2.8.0...

9.8CVSS5.8AI score0.00061EPSS

RedhatCVE•added 2026/03/26 3:4 p.m.•0 views

CVE-2026-25312

7.5CVSS5.9AI score0.00042EPSS

EUVD•added 2026/03/25 6:31 p.m.•1 views

EUVD-2026-15573

Deserialization of Untrusted Data vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Object Injection.This issue affects EventPrime: from n/a through = 4.2.8.0...

5.8AI score0.00061EPSS

EUVD•added 2026/03/25 6:31 p.m.•0 views

EUVD-2025-209001

5.8AI score0.00042EPSS

NVD•added 2026/03/25 5:16 p.m.•0 views

CVE-2026-24378

Deserialization of Untrusted Data vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Object Injection.This issue affects EventPrime: from n/a through = 4.2.8.0...

9.8CVSS0.00061EPSS

NVD•added 2026/03/25 5:16 p.m.•0 views

CVE-2025-69358

7.5CVSS0.00042EPSS