Vulnerability CVE-2024-1122
Published: 2024-02-09

Description:
The Event Manager, Events Calendar, Events Tickets for WooCommerce ?? Eventin plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the export_data() function in all versions up to, and including, 3.3.50. This makes it possible for unauthenticated attackers to export event data.

 References:
https://www.wordfence.com/threat-intel/vulnerabilities/id/0cbdf679-1657-4249-a433-8fe0cddd94be?source=cve
https://plugins.trac.wordpress.org/changeset/3033231/wp-event-solution/tags/3.3.51/core/admin/hooks.php
Copyright 2026, cxsecurity.com

 

Back to Top