EventON Lite 漏洞列表

共找到 2 个与 EventON Lite 相关的漏洞

📅 加载漏洞趋势中...

CVE-2023-3219: EventON Lite < 2.1.2 - Arbitrary File Download POC

日期: 2025-08-01 | 影响软件: EventON Lite

The plugin does not validate that the event_id parameter in its eventon_ics_download ajax action is a valid Event, allowing unauthenticated visitors to access any Post (including unpublished or protected posts) content via the ics export functionality by providing the numeric id of the post.
CVE-2023-3219: EventON Lite < 2.1.2 - Arbitrary File Download POC

日期: 2025-08-01 | 影响软件: EventON Lite

The plugin does not validate that the event_id parameter in its eventon_ics_download ajax action is a valid Event, allowing unauthenticated visitors to access any Post (including unpublished or protected posts) content via the ics export functionality by providing the numeric id of the post.