CVE-2019-16120

CSV injection in the event-tickets (Event Tickets) plugin before 4.10.7.2 for WordPress exists via the "All Post> Ticketed > Attendees" Export Attendees feature.
References
Configurations

Configuration 1

cpe:2.3:a:tri:event_tickets:*:*:*:*:*:wordpress:*:*

Information

Published : 2019-09-08 11:15

Updated : 2023-02-23 01:49


NVD link : CVE-2019-16120

Mitre link : CVE-2019-16120

Products Affected
No products.
CWE
CWE-1236

Improper Neutralization of Formula Elements in a CSV File