4 matches found
CVE-2024-52427
CVE-2024-52427 affects WordPress Plugin Event Tickets with Ticket Scanner (
CVE-2025-1762
CVE-2025-1762 concerns the WordPress plugin Event Tickets with Ticket Scanner prior to version 2.5.4. The root cause is missing CSRF protection when updating settings, enabling a logged-in attacker to cause settings changes via CSRF. Public sources (NVD, Red Hat, CVE lists) confirm the vulnerabil...
CVE-2024-35652
CVE-2024-35652 is a reflected XSS in the WordPress plugin Event Tickets with Ticket Scanner. According to the description, the vulnerability arises from Improper Neutralization of Input During Web Page Generation and affects Event Tickets with Ticket Scanner versions from n/a up to 2.3.1. The inc...
CVE-2024-6711
CVE-2024-6711 affects the Event Tickets with Ticket Scanner WordPress plugin prior to 2.3.8. It enables stored cross-site scripting due to insufficient sanitization/escaping of certain parameters, potentially allowing an attacker with a role as high as admin to inject script. The cited sources in...