Lucene search
K

39 matches found

Patchstack
Patchstack
added 2024/12/06 9:56 p.m.5 views

WordPress Event Tickets with Ticket Scanner plugin <= 2.4.4 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability

Missing Authorization to Authenticated Subscriber+ Stored Cross-Site Scripting vulnerability discovered by zer0gh0st in WordPress Plugin Event Tickets with Ticket Scanner versions = 2.4.3...

5.4CVSS5.8AI score0.00306EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/12/06 12:0 a.m.4 views

WordPress plugin Event Tickets with Ticket Scanner 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in...

5.4CVSS7.7AI score0.00306EPSS
Exploits0References3
OSV
OSV
added 2024/11/18 3:15 p.m.5 views

CVE-2024-52427

Improper Neutralization of Special Elements Used in a Template Engine vulnerability in Saso Nikolov Event Tickets with Ticket Scanner allows Server Side Include SSI Injection.This issue affects Event Tickets with Ticket Scanner: from n/a through 2.3.11...

8.8CVSS5.8AI score0.00726EPSS
Exploits0References1
NVD
NVD
added 2024/11/18 3:15 p.m.62 views

CVE-2024-52427

Deserialization of Untrusted Data vulnerability in Vollstart Event Tickets with Ticket Scanner event-tickets-with-ticket-scanner allows Server Side Include SSI Injection.This issue affects Event Tickets with Ticket Scanner: from n/a through = 2.3.11...

9.9CVSS0.00726EPSS
Exploits0References1
CVE
CVE
added 2024/11/18 2:22 p.m.79 views

CVE-2024-52427

CVE-2024-52427 affects WordPress Plugin Event Tickets with Ticket Scanner (

9.9CVSS7.2AI score0.00726EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/11/18 2:22 p.m.17 views

CVE-2024-52427 WordPress Event Tickets with Ticket Scanner plugin <= 2.3.11 - Remote Code Execution (RCE) vulnerability

Deserialization of Untrusted Data vulnerability in Vollstart Event Tickets with Ticket Scanner event-tickets-with-ticket-scanner allows Server Side Include SSI Injection.This issue affects Event Tickets with Ticket Scanner: from n/a through = 2.3.11...

9.9CVSS7.2AI score0.00726EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/18 12:0 a.m.3 views

WordPress plugin Event Tickets with Ticket Scanner 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

9.9CVSS8.2AI score0.00726EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/18 12:0 a.m.9 views

PT-2024-35267 · Unknown · Event Tickets With Ticket Scanner

Name of the Vulnerable Software and Affected Versions: Event Tickets with Ticket Scanner versions 2.3.11 and earlier Description: The issue affects Event Tickets with Ticket Scanner, allowing Server Side Include SSI Injection due to improper neutralization of special elements used in a template...

9.9CVSS9.7AI score0.00726EPSS
Exploits0References6
Patchstack
Patchstack
added 2024/11/15 8:26 a.m.3 views

WordPress Event Tickets with Ticket Scanner plugin <= 2.3.11 - Remote Code Execution (RCE) vulnerability

Remote Code Execution RCE vulnerability discovered by Hakiduck Patchstack Alliance in WordPress Plugin Event Tickets with Ticket Scanner versions = 2.3.11...

9.9CVSS7.5AI score0.00726EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/11/15 12:0 a.m.15 views

WordPress Event Tickets with Ticket Scanner Plugin <= 2.3.11 is vulnerable to Remote Code Execution (RCE)

Software Event Tickets with Ticket Scanner Type Plugin Vulnerable versions = 2.3.11 Fixed in 2.3.12 OWASP Top 10 A3: Injection Classification Remote Code Execution RCE CVE CVE-2024-52427 Patch priority Medium CVSS severity Medium 9.9 Developer Claim ownership PSID 3ef418855694 Credits Hakiduck...

9.9CVSS7.6AI score0.00726EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/08/16 1:35 a.m.4 views

WordPress Event Tickets with Ticket Scanner plugin < 2.3.8 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by Anas Jamal and Satyam Singh in WordPress Plugin Event Tickets with Ticket Scanner versions 2.3.8...

3.5CVSS6.1AI score0.00271EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2024/08/16 12:0 a.m.11 views

WordPress Event Tickets with Ticket Scanner Plugin < 2.3.8 is vulnerable to Cross Site Scripting (XSS)

Software Event Tickets with Ticket Scanner Type Plugin Vulnerable versions 2.3.8 Fixed in 2.3.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-6711 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 0bf7f36b041a Credits Anas Jam...

5.6AI score0.00271EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2024/06/04 3:15 p.m.4 views

CVE-2024-35652

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Saso Nikolov Event Tickets with Ticket Scanner allows Reflected XSS.This issue affects Event Tickets with Ticket Scanner: from n/a through 2.3.1...

6.1CVSS5.8AI score0.00288EPSS
Exploits0References1
NVD
NVD
added 2024/06/04 3:15 p.m.25 views

CVE-2024-35652

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Saso Nikolov Event Tickets with Ticket Scanner allows Reflected XSS.This issue affects Event Tickets with Ticket Scanner: from n/a through 2.3.1...

7.1CVSS6.9AI score0.00288EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/04 2:12 p.m.13 views

CVE-2024-35652 WordPress Event Tickets with Ticket Scanner plugin <= 2.3.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Saso Nikolov Event Tickets with Ticket Scanner allows Reflected XSS.This issue affects Event Tickets with Ticket Scanner: from n/a through 2.3.1...

7.1CVSS7AI score0.00288EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/04 2:12 p.m.28 views

CVE-2024-35652 WordPress Event Tickets with Ticket Scanner plugin <= 2.3.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Saso Nikolov Event Tickets with Ticket Scanner allows Reflected XSS.This issue affects Event Tickets with Ticket Scanner: from n/a through 2.3.1...

7.1CVSS6.5AI score0.00288EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/06/03 1:34 p.m.3 views

WordPress Event Tickets with Ticket Scanner plugin <= 2.3.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Le Ngoc Anh Patchstack Alliance in WordPress Plugin Event Tickets with Ticket Scanner versions = 2.3.1...

7.1CVSS6.1AI score0.00288EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/06/03 12:0 a.m.9 views

WordPress Event Tickets with Ticket Scanner Plugin <= 2.3.1 is vulnerable to Cross Site Scripting (XSS)

Software Event Tickets with Ticket Scanner Type Plugin Vulnerable versions = 2.3.1 Fixed in 2.3.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35652 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID a8b7482ae90c Credits Le Ngoc Anh...

7.1CVSS6.5AI score0.00288EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/08/21 12:0 a.m.7 views

WordPress Event Tickets with Ticket Scanner Plugin < 1.5.5 is vulnerable to Cross Site Scripting (XSS)

Software Event Tickets with Ticket Scanner Type Plugin Vulnerable versions 1.5.5 Fixed in 1.5.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE N/A Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID daa37a82b56a Credits Unknown...

5.9AI score
Exploits0References2Affected Software1
Rows per page
Query Builder