These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2026-42687 is a HIGH severity vulnerability (CVSS Score: 8.1) in the EventPrime plugin versions <= 4.3.2.1. The vulnerability allows unauthenticated PHP object injection. The CVE was published on [cvePublishedAt]2026-06-15T21:16:56.870Z[/cvePublishedAt] and modified on [cveModifiedAt]2026-06-15T21:24:32.790Z[/cveModifiedAt].
CVE-2026-39518 is a HIGH-severity vulnerability in EventPrime, a WordPress plugin for event calendar management. The vulnerability, published on 2026-06-15T21:16:46.333Z and last modified on 2026-06-15T21:24:32.790Z, has a CVSS score of 7.1. It is classified as an Insecure Direct Object References (IDOR) vulnerability, which could allow attackers to access sensitive data or perform unauthorized actions. T [truncated]