Lucene search
WPScanCVELIST:CVE-2021-25028HistoryJan 24, 2022 - 8:01 a.m.
CVE-2021-25028 Event Tickets < 5.2.2 - Open Redirect
2022-01-2408:01:12
CWE-601
WPScan
www.cve.org
0.001 Low
EPSS
Percentile
43.6%
The Event Tickets WordPress plugin before 5.2.2 does not validate the tribe_tickets_redirect_to parameter before redirecting the user to the given value, leading to an arbitrary redirect issue
CNA Affected
[
{
"product": "Event Tickets",
"vendor": "Unknown",
"versions": [
{
"lessThan": "5.2.2",
"status": "affected",
"version": "5.2.2",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2021-25028
2022-01-24 08:15:09
nuclei
nuclei
WordPress Event Tickets < 5.2.2 - Open Redirect
2022-02-12 16:47:01
nvd
nvd
CVE-2021-25028
2022-01-24 08:15:09
patchstack
patchstack
WordPress Event Tickets plugin <= 5.2.1 - Open Redirect vulnerability
2021-12-22 00:00:00
prion
prion
Crlf injection
2022-01-24 08:15:00
wpvulndb
wpvulndb
Event Tickets < 5.2.2 - Open Redirect
2021-12-22 00:00:00
wpexploit
wpexploit
Event Tickets < 5.2.2 - Open Redirect
2021-12-22 00:00:00