CampTix Event Ticketing <= 1.5.0 - CSV Injection Bypasses and XSS

Affects Plugin

fixed in version 1.5.1

References

URL https://hackerone.com/reports/160500
URL https://hackerone.com/reports/160520
URL https://hackerone.com/reports/160674
URL https://hackerone.com/reports/164793

Classification

Type MULTI

Miscellaneous

Original Researcher white_walker, lalka, and grande
Views 2485
Verified No
WPVDB ID 9463

Timeline

Publicly Published 2016-10-11 (about 3 years ago)
Added 2019-07-18 (5 months ago)
Last Updated 2019-11-27 (14 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin