3 matches found
PT-2024-39897 · WordPress · Eventprime – Events Calendar
Name of the Vulnerable Software and Affected Versions: The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress versions up to, and including, 4.0.4.7 Description: The issue is related to Stored Cross-Site Scripting via the ep booking attendee fields fields due to insufficient...
CVE-2024-47648
URL Redirection to Untrusted Site 'Open Redirect' vulnerability in EventPrime Events EventPrime.This issue affects EventPrime: from n/a through 4.0.4.5...
PT-2024-16844 · WordPress · Eventprime – Events Calendar
Name of the Vulnerable Software and Affected Versions: The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress versions up to, and including, 3.4.2 Description: The issue is related to a missing capability check on the save frontend event submission function, allowing...