Wp-eventmanager Wp_event_manager

10 CVEs affecting Wp-eventmanager Wp_event_manager. Latest disclosed: 2025-07-16. Critical: 0, High: 2.

Top CVEs affecting Wp-eventmanager Wp_event_manager
CVESeverityScorePublishedSummary
CVE-2025-2800High7.22025-07-16The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the…
CVE-2023-47697High7.12023-11-13Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WP Event Manager WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce…
CVE-2023-52118Medium6.52024-02-01Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Event Manager WP User Profile Avatar allows Stored XSS…
CVE-2024-2691Medium6.42024-07-16The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the…
CVE-2024-0976Medium6.12024-03-13The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via t…
CVE-2022-1474Medium6.12022-07-11The WP Event Manager WordPress plugin before 3.1.28 does not sanitise and escape its search before outputting it back in an attribute on the event dashboard, l…
CVE-2023-49181Medium5.92023-12-15Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Event Manager WP Event Manager – Events Calendar, Regi…
CVE-2021-24810Medium4.82022-03-07The WP Event Manager WordPress plugin before 3.1.23 does not escape some of its Field Editor settings when outputting them, allowing high privilege users to pe…
CVE-2025-2799Medium4.42025-07-16The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the…
CVE-2023-4423Medium4.42023-09-27The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admi…