What the vulnerability does
01Description
Authentication Bypass by Spoofing vulnerability in Joe Dolson My Tickets my-tickets allows Identity Spoofing.This issue affects My Tickets: from n/a through <= 2.1.1.
CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
What the vulnerability does
Authentication Bypass by Spoofing vulnerability in Joe Dolson My Tickets my-tickets allows Identity Spoofing.This issue affects My Tickets: from n/a through <= 2.1.1.
Explanation of Vulnerability in Simple Terms
My Tickets versions 2.1.1 and earlier contain an authentication bypass or improper access control vulnerability. An attacker on the network can trigger a denial-of-service condition without authentication. The vulnerability does not affect data confidentiality or integrity, only availability. Site administrators should update to a version newer than 2.1.1.
What an attacker can do
Make the site unavailable or unresponsive to legitimate users.
Potential impact on your site
Your site may become slow or unavailable if exploited, affecting visitor access to ticketing functionality.
Conditions required to exploit
Network access only; no authentication or user interaction required.
Key dates
External resources
Related vulnerabilities