Home

Description

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WP Chill RSVP and Event Management rsvp allows Retrieve Embedded Sensitive Data.This issue affects RSVP and Event Management: from n/a through <= 2.7.16.

PUBLISHED Reserved 2026-04-07 | Published 2026-04-08 | Updated 2026-04-13 | Assigner Patchstack

Problem types

Exposure of Sensitive System Information to an Unauthorized Control Sphere

Product status

Default status
unaffected

Any version
affected

Credits

Muhammad Sharief | Patchstack Bug Bounty Program finder

References

patchstack.com/...tive-data-exposure-vulnerability?_s_id=cve vdb-entry

cve.org (CVE-2026-39536)

nvd.nist.gov (CVE-2026-39536)

Download JSON