CVE-2025-7663 | Ovatheme Events Manager Plugin up to 1.8.6 on WordPress /class-ovaem-ajax.php authorization

Inserito da Angelo Barbosa | Nov 7, 2025 | CVE

A vulnerability was found in Ovatheme Events Manager Plugin up to 1.8.6 on WordPress. It has been classified as critical. This affects an unknown part of the file /class-ovaem-ajax.php. The manipulation leads to missing authorization.

This vulnerability is listed as CVE-2025-7663. The attack may be initiated remotely. There is no available exploit.

CVE-2025-7663 | Ovatheme Events Manager Plugin up to 1.8.6 on WordPress /class-ovaem-ajax.php authorization

Post correlati

CVE-2024-5742 | GNU nano Filename symlink

CVE-2025-0457 | NetVision Information airPASS prior 2.9.0.241231/3.0.0.241231 os command injection

CVE-2024-9796 | WP-Advanced-Search Plugin up to 3.3.9.1 on WordPress t sql injection

CVE-2024-35238 | stacklok Minder up to 0.0.50 $checksumref allocation of resources