exploitDog

CVE-2025-52731

Опубликовано: 14 авг. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Missing Authorization vulnerability in themefunction WordPress Event Manager, Event Calendar and Booking Plugin allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WordPress Event Manager, Event Calendar and Booking Plugin: from n/a through 4.0.24.

Ссылки

https://patchstack.com/database/wordpress/plugin/eventin-pro/vulnerability/wordpress-wordpress-event-manager-event-calendar-and-booking-plugin-plugin-4-0-24-arbitrary-content-deletion-vulnerability?_s_id=cve

EPSS

Процентиль: 10%

0.00036

Низкий

7.5 High

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-f3x4-877m-pv24

CVSS3: 7.5

github

6 месяцев назад

Missing Authorization vulnerability in themefunction WordPress Event Manager, Event Calendar and Booking Plugin allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WordPress Event Manager, Event Calendar and Booking Plugin: from n/a through 4.0.24.

EPSS

Процентиль: 10%

0.00036

Низкий

7.5 High

CVSS3

Дефекты

CWE-862