cleantalk
Vulnerabilities and Security Researches

EventON, CVE-2025-48116

CVE, Research URL

CVE-2025-48116

Home page URL

Security reports for EventON

Application

EventON

Published on
May 16, 2025
Research Description
Missing Authorization vulnerability in Ashan Perera EventON allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects EventON: from n/a through 2.4.4.
Affected versions
Min -, max 2.4.4.
Status
vulnerable
Previous vulnerability researches
The GDPR Framework By Data443 (CVE-2024-13621) , May 17, 2025
New vulnerability
Audio Comments Plugin (CVE-2025-4189) , May 18, 2025
WP Notes Widget (CVE-2025-48121) , May 18, 2025
Eventer (CVE-2025-39482) , May 18, 2025
Eventer (CVE-2025-39481) , May 18, 2025
Push notification for Mobile and Web app (CVE-2025-48127) , May 18, 2025