CVSS 3.1 Score 5.3 of 10 (medium)


Published Feb 9, 2024
Updated: Feb 15, 2024
CWE ID 862


CVE-2024-1122 is a vulnerability found in the Event Manager, Events Calendar, Events Tickets for WooCommerce – Eventin plugin for WordPress. The vulnerability affects all versions up to and including 3.3.50 of the plugin. It allows unauthenticated attackers to access and export event data due to a missing capability check on the export_data() function. The potential danger posed by this vulnerability is unauthorized access to sensitive data. To remediate this issue, users should update their plugin to a version that includes a fix for the vulnerability.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-1122 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options