CVE-2025-1762 Information

Description

The Event Tickets with Ticket Scanner WordPress plugin before 2.5.4 does not have CSRF check in place when updating its settings which could allow attackers to make a logged in admin change them via a CSRF attack

Reference

https://wpscan.com/vulnerability/d5cefdee-2ba0-465d-b176-0dff39fc322c/ https://wpscan.com/vulnerability/d5cefdee-2ba0-465d-b176-0dff39fc322c/