Missing Authorization vulnerability in Marcus (aka ...

@msykes

Missing Authorization vulnerability in Marcus (aka @msykes) Events Manager events-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Events Manager: from n/a through <= 6.6.4.1.

References

Published by the National Vulnerability Database Feb 26, 2025

Published to the GitHub Advisory Database Apr 1, 2026

Last updated Apr 1, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Package

Affected versions

Patched versions

Description

References

Severity

EPSS score

Exploit Prediction Scoring System (EPSS)

Weaknesses

Missing Authorization

CVE ID

GHSA ID

Source code

Uh oh!