CVE-2022-3720: The Event Monster WordPress Plugin Vulnerability - SQL Injection Exploit Details and Security Patch
Previously, we have seen our fair share of WordPress plugin vulnerabilities, and today, attention has been drawn to another popular plugin - The Event Monster.
CVE-2022-3336 - Event Monster WordPress Plugin: CSRF Vulnerability Leads to Arbitrary Visitor Deletion
In recent research, we discovered a security vulnerability in the popular Event Monster WordPress plugin (versions before 1.2.) that could allow an attacker to