Medium severity5.3NVD Advisory· Published Jan 22, 2024· Updated Jun 17, 2026
CVE-2023-6447
CVE-2023-6447
Description
The EventPrime WordPress plugin before 3.3.6 lacks authentication and authorization, allowing unauthenticated visitors to access private and password protected Events by guessing their numeric id/event name.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/EventPrime WordPress plugindescription
- Range: <3.3.6
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/e366881c-d21e-4063-a945-95e6b080a373/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.