cleantalk
Vulnerabilities and Security Researches

Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin, CVE-2026-32354

CVE, Research URL

CVE-2026-32354

Home page URL

Security reports for Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin

Application

Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin

Published on
Mar 14, 2026
Research Description
Insertion of Sensitive Information Into Sent Data vulnerability in magepeopleteam WpEvently mage-eventpress allows Retrieve Embedded Sensitive Data.This issue affects WpEvently: from n/a through < 5.1.9.
Affected versions
max 5.1.9.
Status
vulnerable
Previous vulnerability researches
The Ultimate WordPress Toolkit &#8211; WP Extended (CVE-2024-37259) , Jul 01, 2024
The Ultimate WordPress Toolkit &#8211; WP Extended (CVE-2024-13184) , Jan 20, 2025
The Ultimate WordPress Toolkit &#8211; WP Extended (CVE-2024-11916) , Jan 09, 2025
The Ultimate WordPress Toolkit &#8211; WP Extended (CVE-2024-11816) , Jan 09, 2025
The Ultimate WordPress Toolkit &#8211; WP Extended (CVE-2025-4963) , Jun 14, 2025
New vulnerability
OOPSpam Anti-Spam (CVE-2026-32544) , Mar 31, 2026
NotificationX &#8211; Best FOMO, Social Proof, WooCommerce Sales Popup &amp; Notification Bar Plugin With Elementor (CVE-2026-27042) , Mar 31, 2026
The Conference (CVE-2026-32335) , Mar 31, 2026
WP Booking System &#8211; Booking Calendar (CVE-2025-68515) , Mar 31, 2026
UPI QR Code Payment Gateway for WooCommerce (CVE-2025-67969) , Mar 31, 2026