CVE-2026-1650 | MDJM Event Management Plugin up to 1.7.8.1 on WordPress custom_fields_controller ID authorization (EUVD-2026-10096)
A vulnerability classified as critical was found in MDJM Event Management Plugin up to 1.7.8.1 on WordPress. Affected by this issue is the function custom_fields_controller. The manipulation of the argument ID results in missing authorization.
This vulnerability is reported as CVE-2026-1650. The attack can be launched remotely. No exploit exists.