CampTix Event Ticketing <= 1.5.0 - CSV Injection Bypasses and XSS

Affects Plugin

fixed in version 1.5.1
- plugin closed

References

URL https://hackerone.com/reports/160500
URL https://hackerone.com/reports/160520
URL https://hackerone.com/reports/160674
URL https://hackerone.com/reports/164793

Classification

Type MULTI

Miscellaneous

Original Researcher white_walker, lalka, and grande
Views 3681
Verified No
WPVDB ID 9463

Timeline

Publicly Published 2016-10-11 (almost 4 years ago)
Added 2019-07-18 (12 months ago)
Last Updated 2019-11-27 (8 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin