What the vulnerability does
01Description
Unauthenticated Other Vulnerability Type in WpEvently <= 5.3.3 versions.
CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
What the vulnerability does
Unauthenticated Other Vulnerability Type in WpEvently <= 5.3.3 versions.
Explanation of Vulnerability in Simple Terms
WpEvently versions up to 5.3.3 contain an integrity vulnerability allowing attackers to modify data without authentication. The vulnerability requires only network access and low attack complexity. No confidentiality or availability impact is present. Site administrators should update to a version newer than 5.3.3 to remediate this issue.
What an attacker can do
Modify site data or content without needing to log in.
Potential impact on your site
Attackers can alter event data, settings, or other stored information without authorization.
Conditions required to exploit
Network access only; no authentication or user interaction required.
Key dates
External resources
Related vulnerabilities