Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3
CVE-2026-32583
- EPSS 2.73%
- Veröffentlicht 16.03.2026 15:11:29
- Zuletzt bearbeitet 17.03.2026 14:20:01
Missing Authorization vulnerability in Webnus Inc. Modern Events Calendar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Modern Events Calendar: from n/a through 7.29.0.
9.6
CVE-2024-6522
- EPSS 0.74%
- Veröffentlicht 07.08.2024 11:15:45
- Zuletzt bearbeitet 01.03.2025 01:20:09
The Modern Events Calendar plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 7.12.1 via the 'mec_fes_form' AJAX function. This makes it possible for authenticated attackers, with Subscriber-level ...
8.8
CVE-2024-5441
- EPSS 19.69%
- Veröffentlicht 09.07.2024 06:15:02
- Zuletzt bearbeitet 08.04.2026 17:19:03
The Modern Events Calendar plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the set_featured_image function in all versions up to, and including, 7.11.0. This makes it possible for authenticated atta...
1