cleantalk
Vulnerabilities and Security Researches

My Tickets, CVE-2025-58988

CVE, Research URL

CVE-2025-58988

Home page URL

Security reports for My Tickets

Application

My Tickets

Published on
Sep 09, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Joe Dolson My Tickets allows Stored XSS. This issue affects My Tickets: from n/a through 2.0.22.
Affected versions
Min -, max 2.0.23.
Status
vulnerable
Previous vulnerability researches
Support Ticket System (CVE-2015-7670) , Jun 10, 2024
New vulnerability
Pixeline's Email Protector (CVE-2025-58982) , Sep 11, 2025
Include Me (CVE-2025-58983) , Sep 11, 2025
PagSeguro / PagBank Connect (CVE-2025-10142) , Sep 11, 2025
Duplicate Page and Post (CVE-2025-6189) , Sep 11, 2025
Advanced Settings (CVE-2025-58975) , Sep 10, 2025