My Tickets: Leaks Sensitive Data from Sensitive Inputs

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.5

My Tickets: Leaks Sensitive Data from Sensitive Inputs

CVE-2026-27406

Summary

My Tickets versions 2.1.0 and earlier may expose sensitive information that is embedded in user input. This can happen when users enter sensitive data into the software. To fix this, update to version 2.1.1 or later.

Original title

Insertion of Sensitive Information Into Sent Data vulnerability in Joe Dolson My Tickets my-tickets allows Retrieve Embedded Sensitive Data.This issue affects My Tickets: from n/a through <= 2.1.0.

Original description

Insertion of Sensitive Information Into Sent Data vulnerability in Joe Dolson My Tickets my-tickets allows Retrieve Embedded Sensitive Data.This issue affects My Tickets: from n/a through <= 2.1.0.

Vulnerability type

CWE-201

https://patchstack.com/database/Wordpress/Plugin/my-tickets/vulnerability/wordpr...

Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026