Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
awplife event monster vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-47525
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in A WP Life Event Monster – Event Management, Tickets Booking, Upcoming Event allows Stored XSS.This issue affects Event Monster – Event Management, Tickets B...
Awplife Event Monster
4.3
CVSSv3
CVE-2022-3336
The Event Monster WordPress plugin prior to 1.2.0 does not have CSRF check when deleting visitors, which could allow malicious users to make logged in admin delete arbitrary visitors via a CSRF attack
Awplife Event Monster
7.2
CVSSv3
CVE-2022-3720
The Event Monster WordPress plugin prior to 1.2.0 does not validate and escape some parameters before using them in SQL statements, which could lead to SQL Injection exploitable by high privilege users
Awplife Event Monster
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started