Lucene search
WPScanCVELIST:CVE-2021-25028HistoryJan 24, 2022 - 8:01 a.m.
CVE-2021-25028 Event Tickets < 5.2.2 - Open Redirect
2022-01-2408:01:12
CWE-601
WPScan
www.cve.org
4
event tickets
wordpress
plugin
cve-2021-25028
open redirect
arbitrary redirect
EPSS
0.001
Percentile
45.1%
The Event Tickets WordPress plugin before 5.2.2 does not validate the tribe_tickets_redirect_to parameter before redirecting the user to the given value, leading to an arbitrary redirect issue
CNA Affected
[
{
"product": "Event Tickets",
"vendor": "Unknown",
"versions": [
{
"lessThan": "5.2.2",
"status": "affected",
"version": "5.2.2",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
Event Tickets < 5.2.2 - Open Redirect
2021-12-22 00:00:00
wpexploit
wpexploit
Event Tickets < 5.2.2 - Open Redirect
2021-12-22 00:00:00
patchstack
patchstack
WordPress Event Tickets plugin <= 5.2.1 - Open Redirect vulnerability
2021-12-22 00:00:00
prion
prion
Crlf injection
2022-01-24 08:15:00
nuclei
nuclei
WordPress Event Tickets < 5.2.2 - Open Redirect
2022-02-12 16:47:01
nvd
nvd
CVE-2021-25028
2022-01-24 08:15:09
cve
cve
CVE-2021-25028
2022-01-24 08:15:09