Vulnerabilities > E Dynamics > Events Made Easy > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-22 | CVE-2023-28660 | SQL Injection vulnerability in E-Dynamics Events Made Easy The Events Made Easy WordPress Plugin, version <= 2.3.14 is affected by an authenticated SQL injection vulnerability in the 'search_name' parameter in the eme_recurrences_list action. | 8.8 |
| 2022-01-03 | CVE-2021-25030 | SQL Injection vulnerability in E-Dynamics Events Made Easy The Events Made Easy WordPress plugin before 2.2.36 does not sanitise and escape the search_text parameter before using it in a SQL statement via the eme_searchmail AJAX action, available to any authenticated users. | 8.8 |