Mage-people Event_manager_and_tickets_selling_for_woocommerce

7 CVEs affecting Mage-people Event_manager_and_tickets_selling_for_woocommerce. Latest disclosed: 2025-06-07. Critical: 0, High: 2.

Top CVEs affecting Mage-people Event_manager_and_tickets_selling_for_woocommerce
CVESeverityScorePublishedSummary
CVE-2022-0478High8.82022-03-14The Event Manager and Tickets Selling for WooCommerce WordPress plugin before 3.5.8 does not validate and escape the post_author_gutenberg parameter before usi…
CVE-2024-24796High8.22024-02-12Deserialization of Untrusted Data vulnerability in MagePeople Team Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin.This…
CVE-2024-43138Medium6.52024-08-13Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in MagePeople Team Event Manager for WooCommerce allows PHP Local…
CVE-2025-5568Medium6.42025-06-07The WpEvently plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in all versions up to, and including, 4.4.2 due to insu…
CVE-2023-36383Medium5.92023-07-18Auth. (editor+) Stored Cross-Site Scripting (XSS) vulnerability in MagePeople Team Event Manager and Tickets Selling Plugin for WooCommerce plugin <= 3.9.5 ver…
CVE-2023-28422Medium5.92023-03-23Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in MagePeople Team Event Manager and Tickets Selling Plugin for WooCommerce <= 3.8.6. versions.
CVE-2023-0144Medium5.42023-02-06The Event Manager and Tickets Selling Plugin for WooCommerce WordPress plugin before 3.8.0 does not validate and escape some of its post meta before outputting…