CVE-2024-5333 Information

Description

The Events Calendar WordPress plugin before 6.8.2.1 is missing access checks in the REST API allowing for unauthenticated users to access information about password protected events.

Reference

https://wpscan.com/vulnerability/764b5a23-8b51-4882-b899-beb54f684984/