The Quick Event Manager plugin for WordPress is not secure in versions up to and including 9.7.4. People with minimal access to the site such as subscribers can change registration settings that should only be available to site administrators. This means that people with limited access can do more than they should be able to do.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
