Known Vulnerabilities for Event Calendar by Total-soft
Listed below are 2 of the newest known vulnerabilities associated with "Event Calendar" by "Total-soft".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-59234 json | Authorization Bypass Through User-Controlled Key (CWE-639) in CalendarDeleteEventController (app/Http/Controllers/Calendar/Ca... | Not Provided | 2026-07-03 | 2026-07-06 |
| CVE-2026-55743 json | The shell tool command allowlist in the SecurityPolicy of OpenHuman desktop agent through 0.54.0 (default Supervised security... | Not Provided | 2026-06-17 | 2026-06-17 |
| CVE-2026-54006 json | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, POST /api/... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-45085 json | Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before ... | Not Provided | 2026-06-12 | 2026-06-15 |
| CVE-2026-25465 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in codepeople CP Multi Vie... | Not Provided | 2026-03-25 | 2026-04-28 |
| CVE-2026-25312 json | Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Exploiting Incorrectl... | Not Provided | 2026-03-19 | 2026-04-29 |
| CVE-2026-24380 json | Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Exploiting Incorrectl... | Not Provided | 2026-01-22 | 2026-04-28 |
| CVE-2026-24378 json | Deserialization of Untrusted Data vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Object In... | Not Provided | 2026-03-25 | 2026-04-24 |
| CVE-2026-13441 json | The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi... | Not Provided | 2026-07-09 | 2026-07-09 |
| CVE-2026-13039 json | The Eventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) plugin for WordPress is vulnerable to auth... | Not Provided | 2026-07-10 | 2026-07-13 |