CVE-2024-0235

MEDIUM EXPLOITED NUCLEI

EventON WordPress Plugin < 2.2.7 - Unauthenticated Email Address Disclosure via AJAX Action

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2024-0235 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 3 public exploits from researchers including Boshe99, Nxploited, Cappricio-Securities. A Nuclei detection template is also available.

AI-analyzed exploit summary The repository contains functional exploit code for CVE-2024-0235, demonstrating an arbitrary file upload vulnerability in the 3DPrint Lite WordPress plugin. The Python script automates the exploitation process by uploading a malicious file to a vulnerable endpoint.

Description

The EventON WordPress plugin before 4.5.5, EventON WordPress plugin before 2.2.7 do not have authorisation in an AJAX action, allowing unauthenticated users to retrieve email addresses of any users on the blog

Exploits (3)

github WORKING POC
by Boshe99 · pythonpoc
https://github.com/Boshe99/CVE-Exploits/tree/main/CVE-2024-0235-PoC

The repository contains functional exploit code for CVE-2024-0235, demonstrating an arbitrary file upload vulnerability in the 3DPrint Lite WordPress plugin. The Python script automates the exploitation process by uploading a malicious file to a vulnerable endpoint.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: WordPress Plugin 3DPrint Lite 1.9.1.4
No auth needed
Prerequisites: target URL · malicious file to upload
devstral-2 · analyzed Feb 27, 2026 Full analysis →
nomisec WORKING POC
by Nxploited · infoleak
https://github.com/Nxploited/CVE-2024-0235-PoC

This repository contains a functional Python script that exploits CVE-2024-0235, an unauthenticated email address disclosure vulnerability in the EventON WordPress plugin. The script checks the plugin version and sends a crafted POST request to retrieve email addresses of users with administrator roles.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: EventON WordPress plugin (Free < 2.2.8, Premium < 4.5.5)
No auth needed
Prerequisites: Target must have the vulnerable EventON plugin installed and accessible
devstral-2 · analyzed Feb 18, 2026 Full analysis →
nomisec SCANNER
by Cappricio-Securities · poc
https://github.com/Cappricio-Securities/CVE-2024-0235

This repository contains a Python-based scanner for detecting CVE-2024-0235, a vulnerability in the EventON WordPress plugin. The tool checks for vulnerable endpoints by sending crafted POST requests and analyzing responses for specific patterns indicative of exploitation.

Classification
Scanner 90%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: EventON WordPress Plugin
No auth needed
Prerequisites: Target URL or list of URLs · Python 3 environment
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Nuclei Templates (1)

EventON (Free < 2.2.8, Premium < 4.5.5) - Information Disclosure
MEDIUMby ProjectDiscoveryAI
Shodan: vuln:CVE-2023-2796 || http.html:/wp-content/plugins/eventon-lite/ || http.html:/wp-content/plugins/eventon/
FOFA: wp-content/plugins/eventon/ || body=/wp-content/plugins/eventon/ || body=/wp-content/plugins/eventon-lite/

References (1)

Core 1
Core References
Third Party Advisory exploit vdb-entry technical-description
https://wpscan.com/vulnerability/e370b99a-f485-42bd-96a3-60432a15a4e9/

Scores

CVSS v3 5.3
EPSS 0.3796
EPSS Percentile 98.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

VulnCheck KEV 2025-08-23
CWE
CWE-862
Status published
Products (1)
myeventon/eventon < 2.2.7
Published Jan 16, 2024
Tracked Since Feb 18, 2026