Browse all 6 CVE security advisories affecting WP Event Manager. AI-powered Chinese analysis, POCs, and references for each vulnerability.
WP Event Manager is a WordPress plugin designed for event management and registration. Historically, it has been susceptible to multiple security vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, with six CVEs documented. The plugin's complex functionality involving file handling and user input processing has created attack vectors. Notable security characteristics include insufficient input validation and inadequate access controls in versions prior to 3.1.37, which allowed authenticated users to execute unauthorized actions. While recent versions have addressed many issues, the plugin's history of vulnerabilities highlights the importance of maintaining updated installations to prevent potential compromises.
This page lists every published CVE security advisory associated with WP Event Manager. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.