cleantalk
Vulnerabilities and Security Researches

Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin, CVE-2025-32145

CVE, Research URL

CVE-2025-32145

Home page URL

Security reports for Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin

Application

Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin

Published on
Apr 10, 2025
Research Description
Deserialization of Untrusted Data vulnerability in magepeopleteam WpEvently allows Object Injection. This issue affects WpEvently: from n/a through 4.3.5.
Affected versions
Min -, max 4.3.5.
Status
vulnerable
Previous vulnerability researches
Export All Posts, Products, Orders, Refunds & Users (CVE-2023-45066) , Jun 07, 2024
Export All Posts, Products, Orders, Refunds & Users (CVE-2016-11000) , Jun 07, 2024
Export All Posts, Products, Orders, Refunds & Users (CVE-2018-20968) , Jun 07, 2024
Export All Posts, Products, Orders, Refunds & Users (CVE-2023-2487) , Jun 07, 2024
Export All Posts, Products, Orders, Refunds & Users (CVE-2024-12315) , Feb 16, 2025
New vulnerability
Hotel Booking (CVE-2025-39526) , Apr 19, 2025
TableOn – WordPress Posts Table Filterable  (CVE-2025-32592) , Apr 19, 2025
WP Social Bookmarking (CVE-2025-39422) , Apr 19, 2025
Anthologize (CVE-2025-39437) , Apr 19, 2025
Piotnet Addons For Elementor (CVE-2024-13650) , Apr 19, 2025