← Back

My Tickets Project

my_tickets_project

2 CVEs • 1 product

Products (1)

Click to collapse
Toggle
My Tickets
my_tickets

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
1My Tickets Project
1My Tickets
Jun 17, 2026
Mar 13, 2023
N/A· v4
8.8 HIGH· v3
N/A· v2
Cross-Site Request Forgery (CSRF) vulnerability in Joseph C Dolson My Tickets plugin <= 1.9.10 versions.
1My Tickets Project
1My Tickets
Jun 17, 2026
Nov 17, 2021
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The My Tickets WordPress plugin before 1.8.31 does not properly sanitise and escape the Email field of booked tickets before outputting it in the Payment admin dashboard, which could allow unauthenticated users to perfor...Show more
The My Tickets WordPress plugin before 1.8.31 does not properly sanitise and escape the Email field of booked tickets before outputting it in the Payment admin dashboard, which could allow unauthenticated users to perform Cross-Site Scripting attacks against adminsShow less