Thimpress Wp Events Manager
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Thimpress Wp Events Manager.
By the Year
In 2026 there have been 0 vulnerabilities in Thimpress Wp Events Manager. Wp Events Manager did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 1 | 8.80 |
It may take a day or so for new Wp Events Manager vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Thimpress Wp Events Manager Security Vulnerabilities
WordPress WP Events Manager 2.1.11 Time-Based SQLi via order Param
CVE-2024-7717
8.8 - High
- August 31, 2024
The WP Events Manager plugin for WordPress is vulnerable to time-based SQL Injection via the order parameter in all versions up to, and including, 2.1.11 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Subscriber-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
SQL Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Thimpress Wp Events Manager or by Thimpress? Click the Watch button to subscribe.
