← Back

My Tickets

my_tickets

Vendor: My Tickets Project • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
1My Tickets Project
1My Tickets
Jun 17, 2026
Mar 13, 2023
N/A· v4
8.8 HIGH· v3
N/A· v2
Cross-Site Request Forgery (CSRF) vulnerability in Joseph C Dolson My Tickets plugin <= 1.9.10 versions.
1My Tickets Project
1My Tickets
Jun 17, 2026
Nov 17, 2021
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The My Tickets WordPress plugin before 1.8.31 does not properly sanitise and escape the Email field of booked tickets before outputting it in the Payment admin dashboard, which could allow unauthenticated users to perfor...Show more
The My Tickets WordPress plugin before 1.8.31 does not properly sanitise and escape the Email field of booked tickets before outputting it in the Payment admin dashboard, which could allow unauthenticated users to perform Cross-Site Scripting attacks against adminsShow less