VYPR

Timetable and Event Schedule

by Motopress

CVEs (4)

  • CVE-2025-12954LowDec 3, 2025
    risk 0.18cvss 2.7epss 0.00

    The Timetable and Event Schedule by MotoPress WordPress plugin before 2.4.16 does not verify a user has access to a specific event when duplicating, leading to arbitrary event disclosure when to users with a role as low as Contributor.

  • CVE-2020-36840Oct 16, 2024
    risk 0.00cvss epss 0.00

    The Timetable and Event Schedule by MotoPress plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the wp_ajax_route_url() function called via a nopriv AJAX action in versions up to, and including, 2.3.8. This makes it possible for…

  • CVE-2022-2844Aug 16, 2022
    risk 0.00cvss epss 0.00

    A vulnerability classified as problematic has been found in MotoPress Timetable and Event Schedule up to 1.4.06. This affects an unknown part of the file /wp/?cpmvc_id=1&cpmvc_do_action=mvparse&f=datafeed&calid=1&month_index=1&method=adddetails&id=2 of the component Calendar…

  • CVE-2022-2843Aug 16, 2022
    risk 0.00cvss epss 0.00

    A vulnerability was found in MotoPress Timetable and Event Schedule. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /wp-admin/admin-ajax.php of the component Quick Edit. The manipulation of the argument post_title with the…