My Tickets Project My Tickets — known CVE vulnerabilities
Every CVE whose affected-product data names My Tickets Project My Tickets, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-24796 — CVSS 6.1 (medium): The My Tickets WordPress plugin before 1.8.31 does not properly sanitise and escape the Email field of booked tickets before outputting it…
CVE-2022-47440 — CVSS 4.3 (medium): Cross-Site Request Forgery (CSRF) vulnerability in Joseph C Dolson My Tickets plugin <= 1.9.10 versions.