Vulnerabilities and security researches forevents-maker events-maker

Nov 10, 2025

CVE, Research URL: CVE-2025-62941
Home page URL: Security reports for Events Maker by dFactory
Application: Events Maker by dFactory
Date: Oct 27, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in dFactory Events Maker by dFactory events-maker allows Stored XSS.This issue affects Events Maker by dFactory: from n/a through <= 1.6.14.
Affected versions: max 1.6.14.
Status: vulnerable