Eventin Security Vulnerabilities and Issues — Eventin CVE List

Lucene search

ThemewinterEventin

3 matches found

CVE•added 2024/08/01 10:15 p.m.•48 views

CVE-2024-39648

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Themewinter Eventin allows Stored XSS.This issue affects Eventin: from n/a through 4.0.5.

5.9CVSS5.7AI score0.00133EPSS

CVE•added 2024/12/09 1:15 p.m.•45 views

CVE-2023-49756

Missing Authorization vulnerability in Themewinter Eventin allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Eventin: from n/a through 3.3.52.

5.4CVSS5.6AI score0.00103EPSS

CVE•added 2024/02/09 5:15 a.m.•37 views

CVE-2024-1122

The Event Manager, Events Calendar, Events Tickets for WooCommerce – Eventin plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the export_data() function in all versions up to, and including, 3.3.50. This makes it possible for unauthenticated att...

5.3CVSS6AI score0.00184EPSS