Wp-eventmanager Wp_event_manager
10 CVEs affecting Wp-eventmanager Wp_event_manager. Latest disclosed: 2025-07-16. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-2800 | High | 7.2 | 2025-07-16 | The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the… |
CVE-2023-47697 | High | 7.1 | 2023-11-13 | Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WP Event Manager WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce… |
CVE-2023-52118 | Medium | 6.5 | 2024-02-01 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Event Manager WP User Profile Avatar allows Stored XSS… |
CVE-2024-2691 | Medium | 6.4 | 2024-07-16 | The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the… |
CVE-2024-0976 | Medium | 6.1 | 2024-03-13 | The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via t… |
CVE-2022-1474 | Medium | 6.1 | 2022-07-11 | The WP Event Manager WordPress plugin before 3.1.28 does not sanitise and escape its search before outputting it back in an attribute on the event dashboard, l… |
CVE-2023-49181 | Medium | 5.9 | 2023-12-15 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Event Manager WP Event Manager – Events Calendar, Regi… |
CVE-2021-24810 | Medium | 4.8 | 2022-03-07 | The WP Event Manager WordPress plugin before 3.1.23 does not escape some of its Field Editor settings when outputting them, allowing high privilege users to pe… |
CVE-2025-2799 | Medium | 4.4 | 2025-07-16 | The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the… |
CVE-2023-4423 | Medium | 4.4 | 2023-09-27 | The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admi… |