CVE-2024-5333 in The Events Calendar Plugininfo

Zusammenfassung

von MITRE • 16.12.2024

The Events Calendar WordPress plugin before 6.8.2.1 is missing access checks in the REST API, allowing for unauthenticated users to access information about password protected events.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

WPScan

Reservieren

24.05.2024

Veröffentlichung

16.12.2024

Moderieren

akzeptiert

Eintrag

VDB-288504

CPE

bereit

CWE

CWE-200 (bestätigt)

CVSS

5.3 (CNA)

EPSS

0.10972

KEV

nein

Aktivitäten

very low

Sektor

Homeoffice, Telecommunication, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2024-5333
NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-5333
CVE Details	https://www.cvedetails.com/cve/CVE-2024-5333/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!