EventON
Ashan Perera
Developer
2.4.9
Latest version
6,000
Installations
Sep 15, 2025
Last updated
Vulnerability history
1 present
15 fixed
3 Mitigation rules
- Authenticated (Contributor+) Information Disclosure vulnerability<= 2.4.6Aug 14, 2025
- Broken Access Control Vulnerability<= 2.4.4May 16, 2025
- Local File Inclusion Vulnerability<= 2.4.1May 7, 2025
- Local File Inclusion vulnerability<= 2.4Apr 9, 2025
- Local File Inclusion vulnerability<= 2.4.1Apr 4, 2025
- Admin+ Stored XSS vulnerability< 2.2.17Sep 9, 2024
- Admin+ Stored Cross-Site Scripting via event subtitle vulnerability< 2.2.15Jul 15, 2024
- Missing Authorization to Unauthenticated Stored Cross-Site Scripting and Plugin Settings Updates vulnerability<= 2.2.15Jul 9, 2024
- Cross Site Scripting (XSS) vulnerability<= 2.2.14Apr 30, 2024
- Cross-Site Request Forgery via evo_eventpost_update_meta vulnerability<= 2.2.7Jan 10, 2024
- Cross-Site Request Forgery via save_virtual_event_settings vulnerability<= 2.2.8Jan 10, 2024
- Missing Authorization to Arbitrary Post Meta Update via evo_eventpost_update_meta<= 2.2.7Jan 10, 2024
- Reflected Cross-Site Scripting vulnerability<= 2.2.2Oct 21, 2023
- Admin+ Stored XSS vulnerability< 2.2Oct 17, 2023
- Unauthenticated Event Access vulnerability< 2.1.2Jun 22, 2023
- Unauthenticated Post Access via IDOR vulnerability< 2.1.2Jun 22, 2023