Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wp-events-plugin events manager vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2013-7478
The events-manager plugin prior to 5.5 for WordPress has XSS via EM_Ticket::get_post.
Wp-events-plugin Events Manager
383
VMScore
CVE-2013-7480
The events-manager plugin prior to 5.3.6.1 for WordPress has XSS via the booking form and admin areas.
Wp-events-plugin Events Manager
312
VMScore
CVE-2019-16523
The events-manager plugin up to and including 5.9.5 for WordPress (aka Events Manager) is susceptible to Stored XSS due to improper encoding and insertion of data provided to the attribute map_style of shortcodes (locations_map and events_map) provided by the plugin.
Wp-events-plugin Events Manager
383
VMScore
CVE-2015-9297
The events-manager plugin prior to 5.6 for WordPress has XSS.
Wp-events-plugin Events Manager
312
VMScore
CVE-2018-13137
The Events Manager plugin 5.9.4 for WordPress has XSS via the dbem_event_reapproved_email_body parameter to the wp-admin/edit.php?post_type=event&page=events-manager-options URI.
Wp-events-plugin Events Manager 5.9.4
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2