VYPR

Eventprime Event Calendar Management

by WordPress

Source repositories

CVEs (7)

  • CVE-2026-42687HigJun 15, 2026
    risk 0.53cvss 8.1epss 0.00

    Unauthenticated PHP Object Injection in EventPrime <= 4.3.2.1 versions.

  • CVE-2026-42669HigJun 2, 2026
    risk 0.49cvss 7.5epss 0.00

    Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0.

  • CVE-2026-24380MedJan 22, 2026
    risk 0.34cvss 5.3epss 0.00

    Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EventPrime: from n/a through <= 4.2.8.0.

  • CVE-2025-63007MedDec 9, 2025
    risk 0.28cvss 4.3epss 0.00

    Insertion of Sensitive Information Into Sent Data vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Retrieve Embedded Sensitive Data.This issue affects EventPrime: from n/a through <= 4.2.4.1.

  • CVE-2025-63006MedDec 9, 2025
    risk 0.28cvss 4.3epss 0.00

    Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EventPrime: from n/a through <= 4.2.4.1.

  • CVE-2025-14507MedJan 13, 2026
    risk 0.27cvss 5.3epss 0.00

    The EventPrime - Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.2.7.0 via the REST API. This makes it possible for unauthenticated attackers to extract sensitive booking data…

  • CVE-2025-12498MedNov 8, 2025
    risk 0.21cvss 4.3epss 0.00

    The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to unauthorized booking note creation due to a missing capability check on the 'booking_add_notes' function in all versions up to, and including, 4.2.0.0. This makes it possible for…