Home » Vulnerabilities » Input validation vulnerability in Tickera – WordPress Event Ticketing 3.4.8.2

Latest

Input validation vulnerability in Tickera – WordPress Event Ticketing 3.4.8.2

CVE-2021-24797

Severity: high-risk
Status: Open
Publication: November 23, 2021

The Tickera WordPress plugin had a security vulnerability before version 3.4.8.3. This vulnerability could allow someone who was not authenticated (logged in) to perform malicious attacks against the administrators of the website. The vulnerability was related to the way that the Names of Events were not properly secured before they were displayed in the Orders section of the website.

Detected in:

Tickera – WordPress Event Ticketing open vulnerable versions: >= * <= 3.4.8.2

Open source

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Incorrect?

Is this information incorrect? Please leave us a message.

Latest

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 not found errors

Protecting site visitors with Security Headers

Hardening your website’s security

Input validation vulnerability in Tickera – WordPress Event Ticketing 3.4.8.2

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles

Latest

Passkeys: no need for Limit Login Attempts?

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 not found errors

Protecting site visitors with Security Headers

Hardening your website’s security

Input validation vulnerability in Tickera – WordPress Event Ticketing 3.4.8.2

Detected in: