Skip to main content

Wp Event Aggregator

2 CVEs product

Monthly

CVE-2024-38703 MEDIUM This Month

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Xylus Themes WP Event Aggregator allows Stored XSS.7.9. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Wp Event Aggregator
NVD
CVSS 3.1
6.5
EPSS
0.3%
CVE-2024-31371 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Xylus Themes WP Event Aggregator.7.6. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Wp Event Aggregator
NVD
CVSS 3.1
4.3
EPSS
0.1%
EPSS 0% CVSS 6.5
MEDIUM This Month

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Xylus Themes WP Event Aggregator allows Stored XSS.7.9. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Wp Event Aggregator
NVD
EPSS 0% CVSS 4.3
MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Xylus Themes WP Event Aggregator.7.6. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Wp Event Aggregator
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy