Lucene search
PRIOn knowledge basePRION:CVE-2021-24797HistoryDec 27, 2021 - 11:15 a.m.
Cross site scripting
2021-12-2711:15:00
PRIOn knowledge base
www.prio-n.com
4
0.001 Low
EPSS
Percentile
45.7%
The Tickera WordPress plugin before 3.4.8.3 does not properly sanitise and escape the Name fields of booked Events before outputting them in the Orders admin dashboard, which could allow unauthenticated users to perform Cross-Site Scripting attacks against admins.
Related
wpvulndb
wpvulndb
Tickera < 3.4.8.3 - Unauthenticated Stored Cross-Site Scripting
2021-11-23 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2021-24797
2021-12-27 11:15:08
wpexploit
wpexploit
Tickera < 3.4.8.3 - Unauthenticated Stored Cross-Site Scripting
2021-11-23 00:00:00
cnvd
cnvd
WordPress Tickera plugin cross-site scripting vulnerability
2021-12-28 00:00:00
patchstack
patchstack
cve
cve
CVE-2021-24797
2021-12-27 11:15:08