Event Monster Security Vulnerabilities and Issues — Event Monster CVE List

Lucene search

AwplifeEvent Monster

3 matches found

CVE•added 2024/04/30 9:15 a.m.•57 views

CVE-2024-1895

The Event Monster – Event Management, Tickets Booking, Upcoming Event plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.3.4 via deserialization via shortcode of untrusted input from a custom meta value. This makes it possible for authenticated attack...

7.5CVSS9.3AI score0.00591EPSS

CVE•added 2022/11/21 11:15 a.m.•56 views

CVE-2022-3720

The Event Monster WordPress plugin before 1.2.0 does not validate and escape some parameters before using them in SQL statements, which could lead to SQL Injection exploitable by high privilege users

7.2CVSS7.1AI score0.00383EPSS

CVE•added 2024/06/21 1:15 p.m.•41 views

CVE-2024-5059

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in A WP Life Event Management Tickets Booking.This issue affects Event Management Tickets Booking: from n/a through 1.4.0.

7.5CVSS6.3AI score0.00798EPSS