Events Manager Security Vulnerabilities and Issues — Events Manager CVE List

Lucene search

PixeliteEvents Manager

4 matches found

CVE•added 2024/03/28 2:15 a.m.•54 views

CVE-2024-2111

The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the physical location value in all versions up to, and including, 6.4.7.1 due to insufficient input sanitization and output escaping. This makes it possible for authenti...

6.4CVSS7.5AI score0.00094EPSS

CVE•added 2024/03/28 2:15 a.m.•48 views

CVE-2024-2110

The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.4.7.1. This is due to missing or incorrect nonce validation on several actions. This makes it possible for unauthenticated attackers t...

4.3CVSS8.9AI score0.00102EPSS

CVE•added 2024/03/28 9:15 a.m.•48 views

CVE-2024-30421

Cross-Site Request Forgery (CSRF) vulnerability in Pixelite Events Manager.This issue affects Events Manager: from n/a through 6.4.7.1.

4.3CVSS5AI score0.00162EPSS

CVE•added 2024/03/13 4:15 p.m.•45 views

CVE-2024-0614

The Events Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 6.4.6.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions ...

4.8CVSS5AI score0.00322EPSS