ByteOS Network

Vollstart

Source -

CNA

BOS Name -

N/A

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2025-68015

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-9||CRITICAL

EPSS-0.06% / 19.45%

7 Day CHG~0.00%

Published-22 Jan, 2026 | 16:52

Updated-28 Jan, 2026 | 18:16

WordPress Event Tickets with Ticket Scanner plugin <= 2.8.3 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code ('Code Injection') vulnerability in Vollstart Event Tickets with Ticket Scanner event-tickets-with-ticket-scanner allows Code Injection.This issue affects Event Tickets with Ticket Scanner: from n/a through <= 2.8.3.

Vendor-Vollstart

Product-Event Tickets with Ticket Scanner

CWE ID-CWE-94

Improper Control of Generation of Code ('Code Injection')

CVE-2025-62091

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-5.4||MEDIUM

EPSS-0.05% / 13.91%

7 Day CHG~0.00%

Published-31 Dec, 2025 | 14:19

Updated-20 Jan, 2026 | 15:17

WordPress Serial Codes Generator and Validator with WooCommerce Support plugin <= 2.8.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in Vollstart Serial Codes Generator and Validator with WooCommerce Support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Serial Codes Generator and Validator with WooCommerce Support: from n/a through 2.8.2.

Vendor-Vollstart

Product-Serial Codes Generator and Validator with WooCommerce Support

CWE ID-CWE-862

Missing Authorization