Community Events

Vulnerabilities 15Slug community-eventsLatest version 1.5.9WordPress.org →

Minimum safe version

1.5.9

Update to 1.5.9 or later to address 15 fixable vulnerabilities

Latest available1.5.9 ✓

N/A

2026-02-17< 1.5.8

Community Events <= 1.5.7 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'ce_venue_name' Parameter

Wordfence CVE

N/A

2026-03-06< 1.5.9

Community Events <= 1.5.8 - Authenticated (Administrator+) SQL Injection via 'ce_venue_name' CSV Field

Wordfence CVE

Medium 5.3

2026-01-17< 1.5.7

CVE-2025-14029

CVE EUVD Wordfence

High 7.5

2025-11-19< 1.5.5

CVE-2025-12646

CVE Wordfence

High 7.2

2025-11-01< 1.5.3

CVE-2025-11995

CVE EUVD Wordfence

Critical 9.8

2025-10-08< 1.5.2

CVE-2025-10587

CVE EUVD Patchstack Wordfence

Critical 9.8

2025-10-09< 1.5.2

CVE-2025-10586

CVE Wordfence

Medium 4.8

2024-08-05< 1.5.1

CVE-2024-6270

CVE Patchstack Wordfence

Medium 5.4

2024-07-22< 1.5

CVE-2024-6271

CVE Patchstack Wordfence

Medium 4.8

2023-03-23< 1.4.9

CVE-2022-44742

CVE Patchstack Wordfence WPScan

N/A

< 1.2.3

Community Events <= 1.2.1 - SQL Injection

WPScan

N/A

2015-04-21< 1.3.6

WordPress Community Events Plugin 1.3.5 - SQL Injection

Patchstack

N/A

2011-09-08< 1.2.2

WordPress Community Events Plugin <= 1.2.1 - SQL Injection

Patchstack

Critical 9.8

2017-09-07< 1.4

CVE-2015-3313

CVE Wordfence WPScan

Medium 6.1

2021-08-02< 1.4.8

CVE-2021-24496

CVE Wordfence WPScan