GCVE - cpe:2.3:a:themifyme:themify_event_post:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:themifyme:themify_event_post:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Themifyme (`f7e895d5-5092-5eb3-86f0-2330c85eaa63`)
Product	Themify Event Post (`2d0898bd-c238-5ac9-98af-04fe70ebe30b`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2026-32449`	vulnerable	2026-06-08 07:57:17.603487	WordPress Themify Event Post plugin <= 1.3.4 - Cross Site Scripting (XSS) vulnerability MEDIUM (6.5) Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in themifyme Themify Event Post themify-event-post allows Stored XSS.This issue affects Themify Event Post: from n/a through <= 1.3.4. Published: 2026-03-13T11:42:21.103Z Updated: 2026-04-29T09:51:59.756Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/themify-event-post/vulnerability/wordpress-themify-event-post-plugin-1-3-4-cross-site-scripting-xss-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-30832`	vulnerable	2026-06-08 07:17:01.892774	WordPress Themify Event Post Plugin <= 1.3.2 - Cross Site Scripting (XSS) vulnerability MEDIUM (6.5) Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in themifyme Themify Event Post themify-event-post allows DOM-Based XSS.This issue affects Themify Event Post: from n/a through <= 1.3.2. Published: 2025-03-27T10:55:20.548Z Updated: 2026-04-28T16:11:58.369Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/themify-event-post/vulnerability/wordpress-themify-event-post-plugin-1-3-2-cross-site-scripting-xss-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-30831`	vulnerable	2026-06-08 07:17:01.892408	WordPress Themify Event Post Plugin <= 1.3.2 - Local File Inclusion vulnerability HIGH (7.5) Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in themifyme Themify Event Post themify-event-post allows PHP Local File Inclusion.This issue affects Themify Event Post: from n/a through <= 1.3.2. Published: 2025-03-27T10:55:19.900Z Updated: 2026-04-28T16:11:58.294Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/themify-event-post/vulnerability/wordpress-themify-event-post-plugin-1-3-2-local-file-inclusion-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.