CampTix Event Ticketing <= 1.5.0 - CSV Injection Bypasses and XSS

Affects Plugin

fixed in version 1.5.1

References

URL https://hackerone.com/reports/160500
URL https://hackerone.com/reports/160520
URL https://hackerone.com/reports/160674
URL https://hackerone.com/reports/164793

Classification

Type MULTI

Miscellaneous

Original Researcher white_walker, lalka, and grande
Views 1213
Verified No
WPVDB ID 9463

Timeline

Publicly Published 2016-10-11 (almost 3 years ago)
Added 2019-07-18 (about 1 month ago)
Last Updated 2019-07-18 (about 1 month ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin