CVE-2025-14507 | EventPrime Plugin up to 4.2.7.0 on WordPress REST API information disclosure

Inserito da Angelo Barbosa | Gen 13, 2026 | CVE

A vulnerability was found in EventPrime Plugin up to 4.2.7.0 on WordPress. It has been rated as problematic. This affects an unknown function of the component REST API. Performing a manipulation results in information disclosure.

This vulnerability is reported as CVE-2025-14507. The attack is possible to be carried out remotely. No exploit exists.

CVE-2025-14507 | EventPrime Plugin up to 4.2.7.0 on WordPress REST API information disclosure

Post correlati

CVE-2024-34078 | matthiask html-sanitizer up to 2.4.1 Unicode cross site scripting (GHSA-wvhx-q427-fgh3)

CVE-2025-14430 | ThemeMove Brook Plugin up to 2.8.9 on WordPress filename control

CVE-2024-12901 | FoxCMS up to 1.2 API Endpoint Site.php password improper authorization

CVE-2024-35687 | Yannick Lefebvre Link Library Plugin up to 7.6.3 on WordPress cross site scripting