CVE-2025-58243

CVE-2025-58243 (imEvent) is a Missing Authorization vulnerability in the WordPress plugin imEvent (Jthemes) affecting versions from n/a up to and including 3.4.0. Public sources (NVD, Red Hat, ENISA ENISA EUVD, CVE list) describe that an unauthenticated user could access functionality not constra...

CVE-2025-58243 WordPress imEvent Theme <= 3.4.0 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Jthemes imEvent imevent allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects imEvent: from n/a through = 3.4.0...

WordPress imEvent Theme <= 3.4.0 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme imEvent versions = 3.4.0...

WordPress imEvent Theme <= 3.4.0 is vulnerable to Broken Access Control

Software imEvent Type Theme Vulnerable versions = 3.4.0 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2025-58243 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 8a9b5f890122 Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber...