VYPR
Medium severity5.3NVD Advisory· Published Sep 10, 2024· Updated Jun 17, 2026

CVE-2024-8369

CVE-2024-8369

Description

The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to unauthorized access to Private or Password-protected events due to missing authorization checks in all versions up to, and including, 4.0.4.3. This makes it possible for unauthenticated attackers to view private or password-protected events.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • WordPress/Eventprimellm-fuzzy2 versions
    <=4.0.4.3+ 1 more
    • (no CPE)range: <=4.0.4.3
    • (no CPE)
  • metagauss/EventPrime – Events Calendar, Bookings and Ticketsv5
    Range: 0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.