Wp-eventmanager Wp Event Manager — known CVE vulnerabilities
Every CVE whose affected-product data names Wp-eventmanager Wp Event Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2025-2800 — CVSS 7.2 (high): The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Stored…
CVE-2023-52118 — CVSS 6.5 (medium): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Event Manager WP User Profile…
CVE-2024-2691 — CVSS 6.4 (medium): The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Stored…
CVE-2024-0976 — CVSS 6.1 (medium): The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Reflected…
CVE-2022-1474 — CVSS 6.1 (medium): The WP Event Manager WordPress plugin before 3.1.28 does not sanitise and escape its search before outputting it back in an attribute on…
CVE-2023-49181 — CVSS 5.9 (medium): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Event Manager WP Event Manager –…
CVE-2021-24810 — CVSS 4.8 (medium): The WP Event Manager WordPress plugin before 3.1.23 does not escape some of its Field Editor settings when outputting them, allowing high…
CVE-2023-4423 — CVSS 4.4 (medium): The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Stored…
CVE-2025-2799 — CVSS 4.4 (medium): The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Stored…