4 matches found
CVE-2022-47440
Cross-Site Request Forgery CSRF vulnerability in Joseph C Dolson My Tickets plugin = 1.9.10 versions...
CVE-2022-47440
Cross-Site Request Forgery CSRF vulnerability in Joseph C Dolson My Tickets plugin = 1.9.10 versions...
CVE-2022-47440 WordPress My Tickets Plugin <= 1.9.10 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Joseph C Dolson My Tickets plugin = 1.9.10 versions...
CVE-2022-47440
CVE-2022-47440 is a CSRF vulnerability affecting WordPress My Tickets plugin versions ≤ 1.9.10. The issue stems from missing CSRF protection, enabling unauthorized actions via CSRF (e.g., bulk emailing) as described in connected entries. Mitigation: upgrade to version > 1.9.10 (fixed in 1.9.11...