Vulnerabilities
Vulnerable Software
Metagauss:  >> Eventprime  >> 3.1.2  Security Vulnerabilities
The EventPrime WordPress plugin before 3.2.0 does not have CSRF checks when creating bookings, which could allow attackers to make logged in users create unwanted bookings via CSRF attacks.
CVSS Score
4.3
EPSS Score
0.001
Published
2023-10-31
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in EventPrime EventPrime – Events Calendar, Bookings and Tickets plugin <= 3.1.5 versions.
CVSS Score
7.1
EPSS Score
0.002
Published
2023-10-25


Contact Us

Shodan ® - All rights reserved