The Event Manager, Events Calendar, Events Tickets for WooCommerce – Eventin plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the export_data() function in all versions up to, and including, 3.3.50. This makes it possible for unauthenticated attackers to export event data.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Wordfence
Published: 2024-02-09T04:31:53.959Z
Updated: 2024-02-09T04:31:53.959Z
Reserved: 2024-01-31T13:47:34.673Z
Link: CVE-2024-1122
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-02-09T05:15:08.840
Modified: 2024-02-15T19:17:26.630
Link: CVE-2024-1122
JSON object: View
Redhat Information
No data.
CWE