EUVD-2015-5440

Malware in sbrugna...

CVE-2020-36626 Modern Tribe Panel Builder Plugin SearchFilter.php add_post_content_filtered_to_search_sql sql injection

A vulnerability classified as critical has been found in Modern Tribe Panel Builder Plugin. Affected is the function addpostcontentfilteredtosearchsql of the file ModularContent/SearchFilter.php. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit ha...

PT-2022-9021 · Modern Tribe · Modern Tribe Panel Builder Plugin

Name of the Vulnerable Software and Affected Versions: Modern Tribe Panel Builder Plugin affected versions not specified Description: A critical vulnerability has been found in the Modern Tribe Panel Builder Plugin, affecting the add post content filtered to search sql function of the...

The Events Calendar <= 4.1.1 - Open Redirect

The problem is located in the "tribe-bar-view" parameter that can be used to redirect a user to an arbitrary website. Timeline 2016-04-04 : Initial contact with Modern Tribe 2016-04-05 : Modern Tribe confirms the report 2016-04-07 : Modern Tribe publishes a new version 4.1.1.1 that resolves the...

Cross site scripting

Cross-site scripting XSS vulnerability in the Event Import page import-eventbrite-events.php in the Modern Tribe Eventbrite Tickets plugin before 3.10.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the "error" parameter to wp-admin/edit.php...

CVE-2015-5485

Summary: CVE-2015-5485 is a reflected XSS in The Events Calendar: Eventbrite Tickets Plugin for WordPress by Modern Tribe. Affected software: WordPress plugin The Events Calendar: Eventbrite Tickets (versions before 3.10.2). Vulnerable component: Event Import page (import-eventbrite-events.php). ...

WordPress Modern Tribe Eventbrite Tickets Plugin <= 3.10.1 - XSS

This vulnerability is in the Event Import page. It allows an attacker to inject arbitrary web script or HTML via the "error" parameter to wp-admin/edit.php. Solution Update the plugin...