VYPR

WooEvents - Calendar and Event Booking

by WordPress

CVEs (1)

  • CVE-2024-8671CriSep 24, 2024
    risk 0.59cvss 9.1epss 0.01

    The WooEvents - Calendar and Event Booking plugin for WordPress is vulnerable to arbitrary file overwrite due to insufficient file path validation in the inc/barcode.php file in all versions up to, and including, 4.1.2. This makes it possible for unauthenticated attackers to…