CVE-2025-2800 | WP Event Manager Plugin up to 3.1.50 on WordPress organizer_name cross site scripting

Inserito da Angelo Barbosa | Lug 15, 2025 | CVE

A vulnerability, which was classified as problematic, was found in WP Event Manager Plugin up to 3.1.50 on WordPress. This affects an unknown part. The manipulation of the argument organizer_name leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-2800. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-2800 | WP Event Manager Plugin up to 3.1.50 on WordPress organizer_name cross site scripting

Post correlati

CVE-2024-1215 | SourceCodester CRUD without Page Reload 1.0 fetch_data.php username/city cross site scripting

CVE-2024-33525 | ILIAS up to 7.30/8.10/9.0 XML File Upload cross site scripting

CVE-2024-38778 | Epsiloncool WP Fast Total Search Plugin up to 1.69.234 on WordPress cross-site request forgery

CVE-2024-54214 | NotFound Revy Plugin up to 1.18 on WordPress unrestricted upload