2 matches found
CVE-2024-35729
Missing Authorization vulnerability in Tickera.This issue affects Tickera: from n/a through 3.5.2.6.
CVE-2024-5860
The Tickera – WordPress Event Ticketing plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the tc_dl_delete_tickets AJAX action in all versions up to, and including, 3.5.2.8. This makes it possible for authenticated attackers, with Subscriber-level ...