Does Multisite Ticket System have any unpatched vulnerabilities?

No. All known vulnerabilities in Multisite Ticket System have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Multisite Ticket System compatible with WordPress 4.8.28?

According to WordPress.org data, Multisite Ticket System 1.0 has been tested up to WordPress 4.8.28. Check the plugin's changelog for the latest compatibility information.

How often is Multisite Ticket System updated?

Multisite Ticket System was last updated on Sep 21, 2017. Frequent updates are generally a positive security signal.

What is Multisite Ticket System's security score?

Multisite Ticket System has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Multisite Ticket System Security & Risk Analysis

wordpress.org/plugins/multisite-ticket-system

Ticket support system for multisite network.

10 active installs v1.0 PHP + WP 4.4+ Updated Sep 21, 2017

multisitemultisite-networkticketticketsupportticketsystem

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Multisite Ticket System Safe to Use in 2026?

Generally Safe

Score 85/100

Multisite Ticket System has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8yr ago

Risk Assessment

The multisite-ticket-system plugin v1.0 exhibits a mixed security posture. On the positive side, it has a very small attack surface, with no documented vulnerabilities (CVEs) and no bundled libraries. However, the static analysis reveals significant concerns, particularly regarding data handling. The high percentage of unsanitized paths in the taint analysis (5 out of 6 flows) and the presence of one high-severity flow are critical red flags, suggesting potential for injection vulnerabilities despite the absence of direct SQL injection findings from raw SQL queries. The low percentage of properly escaped output (25%) further exacerbates this risk, as it increases the likelihood of cross-site scripting (XSS) vulnerabilities.

The lack of capability checks and a limited number of nonce checks in conjunction with potentially unsanitized data flows present a substantial risk. While the plugin doesn't appear to have a history of publicly disclosed vulnerabilities, this could be due to its relative obscurity or that past issues have not been identified or reported. The current code analysis, however, points to serious potential weaknesses that could be exploited if an attacker can control the input data that flows through the unsanitized paths.

Key Concerns

High percentage of unsanitized paths
1 High severity taint flow
Low output escaping (25%)
0 Capability checks
Limited Nonce checks (2 total)

Vulnerabilities

None known

Multisite Ticket System Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Multisite Ticket System Code Analysis

Dangerous Functions

Raw SQL Queries

16 prepared

Unescaped Output

101

33 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

70% prepared23 total queries

Output Escaping

25% escaped134 total outputs

Data Flows

5 unsanitized

Data Flow Analysis

6 flows5 with unsanitized paths

search_box (class-wp-list-table.php:346)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Multisite Ticket System Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 9

actionadmin_footerclass-wp-list-table.php:157

actioninitmultisite-ticket-system.php:62

filterset-screen-optionmultisite-ticket-system.php:65

actionadmin_menumultisite-ticket-system.php:68

actionnetwork_admin_menumultisite-ticket-system.php:71

actionwp_loginmultisite-ticket-system.php:74

actionnetwork_admin_menumultisite-ticket-system.php:77

actionadmin_menumultisite-ticket-system.php:80

actionplugins_loadedmultisite-ticket-system.php:253

Maintenance & Trust

Multisite Ticket System Maintenance & Trust

Maintenance Signals

WordPress version tested4.8.28

Last updatedSep 21, 2017

PHP min version

Downloads3K

Community Trust

Rating96/100

Number of ratings4

Active installs10

Alternatives

Multisite Ticket System Alternatives

Code Snippets

code-snippets

An easy, clean and simple way to enhance your site with code snippets.

1.0M 7 CVEs

User Switching

user-switching

100

Instant switching between user accounts in WordPress and WooCommerce.

200K No CVEs

Event Tickets and Registration

event-tickets

Event Tickets allows your visitors to RSVP and buy tickets to events on your site. Also works seamlessly with The Events Calendar.

90K 11 CVEs

Events Manager – Calendar, Bookings, Tickets, and more!

events-manager

Events calendar with bookings, scheduling, appointments, event registration, tickets, recurring events, and venue management.

70K 34 CVEs

Safe Redirect Manager

safe-redirect-manager

100

Safely manage your website's HTTP redirects.

40K 1 CVE

Developer Profile

Multisite Ticket System Developer Profile

merleM_157

1 plugin · 10 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Multisite Ticket System

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/multisite-ticket-system/assets/css/msts_style.css

Version Parameters

multisite-ticket-system/assets/css/msts_style.css?ver=

HTML / DOM Fingerprints

FAQ