Vulnerability CVE-2024-1295


Published: 2024-06-14

Description:
The events-calendar-pro WordPress plugin before 6.4.0.1, The Events Calendar WordPress plugin before 6.4.0.1 does not prevent users with at least the contributor role from leaking details about events they shouldn't have access to. (e.g. password-protected events, drafts, etc.)

 References:
https://wpscan.com/vulnerability/3cffbeb0-545a-4002-b02c-0fa38cada1db/

Copyright 2026, cxsecurity.com

 

Back to Top