CVE-2024-38735
WordPress Event post plugin <= 5.9.5 - Local File Inclusion vulnerability
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Bastien Ho Event post event-post.This issue affects Event post: from n/a through <= 5.9.5.
| CWE | CWE-98 |
| Vendor | bastien ho |
| Product | event post |
| Published | Jul 12, 2024 |
| Last Updated | Apr 1, 2026 |
Stay Ahead of the Next One
Get instant alerts for bastien ho event post
Be the first to know when new unknown vulnerabilities affecting bastien ho event post are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Bastien Ho / Event post
0 โค 5.9.5
References
patchstack.com: https://patchstack.com/database/Wordpress/Plugin/event-post/vulnerability/wordpress-event-post-plugin-5-9-5-local-file-inclusion-vulnerability?_s_id=cve patchstack.com: https://patchstack.com/database/vulnerability/event-post/wordpress-event-post-plugin-5-9-5-local-file-inclusion-vulnerability?_s_id=cve
Credits
Emili Castells | Patchstack Bug Bounty Program