Eventin Security Vulnerabilities and Issues — Eventin CVE List

Lucene search

ThemewinterEventin

3 matches found

CVE•added 2024/08/01 10:15 p.m.•50 views

CVE-2024-39648

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Themewinter Eventin allows Stored XSS.This issue affects Eventin: from n/a through 4.0.5.

5.9CVSS5.7AI score0.0015EPSS

CVE•added 2025/03/20 6:15 a.m.•44 views

CVE-2025-1766

The Event Manager, Events Calendar, Tickets, Registrations – Eventin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'payment_complete' function in all versions up to, and including, 4.0.24. This makes it possible for unauthenticated ...

5.3CVSS5.3AI score0.00134EPSS

CVE•added 2024/02/09 5:15 a.m.•38 views

CVE-2024-1122

The Event Manager, Events Calendar, Events Tickets for WooCommerce – Eventin plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the export_data() function in all versions up to, and including, 3.3.50. This makes it possible for unauthenticated att...

5.3CVSS6AI score0.00184EPSS