CVE-2023-3219

EventON < 2.1.2 - Unauthenticated Post Access via IDOR

EPSS 6.1%

Vexday Risk Score

38Attention

SSVC decision (CISA)

Attend

PoC available → attend closely

CVSS —EPSS 6.1%KEV nãoPoC públicaNuclei simMetasploit —Patch —

Lifecycle

10 Jul 2023Published on NVD

04 Aug 2023Public PoC

Recommendation: Plan a near-term fix — a public PoC already exists.

The EventON WordPress plugin before 2.1.2 does not validate that the event_id parameter in its eventon_ics_download ajax action is a valid Event, allowing unauthenticated visitors to access any Post (including unpublished or protected posts) content via the ics export functionality by providing the numeric id of the post.

Affected products

Unknown · EventON

public PoCs found — 3

cve_referencepacketstormsecurity.com/files/173992/WordPress-EventON-Calendar-4.4-Insecure-Direct-Object-Reference.htmlunverified cve_referencewpscan.com/vulnerability/72d80887-0270-4987-9739-95b1a178c1fdunverified exploitdbwww.exploit-db.com/exploits/51659unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.com/files/173992/WordPress-EventON-Calendar-4.4-Insecure-Direct-Object-Reference.html https://wpscan.com/vulnerability/72d80887-0270-4987-9739-95b1a178c1fd