Event Tickets
StellarWP
Developer
5.26.7
Latest version
90,000
Installations
Oct 28, 2025
Last updated
Vulnerability history
0 present
14 fixed
3 Mitigation rules
- Unauthenticated Ticket Payment Bypass vulnerability<= 5.26.5Oct 18, 2025
- Broken Access Control vulnerability<= 5.26.3Oct 16, 2025
- Reflected Cross Site Scripting (XSS) vulnerability<= 5.20.0Mar 27, 2025
- Missing Authorization to Ticket Deletion vulnerability<= 5.19.1.1Feb 20, 2025
- Insecure Direct Object Reference to Sensitive Information Exposure vulnerability<= 5.18.1Jan 30, 2025
- Cross Site Request Forgery (CSRF) vulnerability<= 5.11.0.4Jul 12, 2024
- Improper Authorization to Information Disclosure<= 5.8.2Mar 26, 2024
- Contributor+ Arbitrary Events Access vulnerability< 5.8.1Mar 5, 2024
- Missing Authorization vulnerability<= 5.8.1Feb 22, 2024
- Reflected Cross Site Scripting (XSS) vulnerability<= 5.5.11.1Jul 19, 2023
- Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability< 5.3.0.1Feb 28, 2022
- Sensitive Information Disclosure vulnerability< 5.3.0.1Feb 28, 2022
- Open Redirect vulnerability<= 5.2.1Dec 22, 2021
- CSV Injection vulnerability<= 4.10.7.1Sep 3, 2019