Eventon Eventon (Pro) - Wordpress Virtual Event Calendar Plugin
6 CVEs affecting Eventon Eventon (Pro) - Wordpress Virtual Event Calendar Plugin. Latest disclosed: 2026-06-30. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-9711 | Critical | 9.8 | 2026-06-30 | The EventON - WordPress Virtual Event Calendar Plugin plugin for WordPress (full) is vulnerable to SQL Injection via the WordPress 'search' parameter in versio… |
CVE-2023-6244 | Medium | 6.5 | 2024-01-11 | The EventON - WordPress Virtual Event Calendar Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4… |
CVE-2023-6242 | Medium | 6.5 | 2024-01-11 | The EventON - WordPress Virtual Event Calendar Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4… |
CVE-2023-6158 | Medium | 6.5 | 2024-01-10 | The EventON - WordPress Virtual Event Calendar Plugin plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing… |
CVE-2025-3527 | Medium | 6.4 | 2025-05-17 | The EventON Pro plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check in the 'assets/lib/settings/settings… |
CVE-2023-6243 | Medium | 4.3 | 2024-10-19 | The EventON PRO - WordPress Virtual Event Calendar Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including… |