Does Ticketleo Events have any unpatched vulnerabilities?

No. All known vulnerabilities in Ticketleo Events have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Ticketleo Events compatible with WordPress 6.7.5?

According to WordPress.org data, Ticketleo Events 1.0.3 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is Ticketleo Events compatible with PHP 8.1+?

Ticketleo Events requires PHP 8.1 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Ticketleo Events updated?

Ticketleo Events was last updated on Feb 19, 2025. Frequent updates are generally a positive security signal.

What is Ticketleo Events's security score?

Ticketleo Events has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Ticketleo Events Security & Risk Analysis

wordpress.org/plugins/ticketleo-events

Werben Sie Ihre Ticketleo-Events direkt auf Ihrer Website – wählen Sie aus drei flexiblen Ansichten.

20 active installs v1.0.3 PHP 8.1+ WP 6.6+ Updated Feb 19, 2025

event-listingeventsticketingticketleo

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Ticketleo Events Safe to Use in 2026?

Generally Safe

Score 92/100

Ticketleo Events has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The ticketleo-events plugin, in version 1.0.3, presents a generally positive security posture based on the static analysis. A significant strength is the complete absence of discovered vulnerabilities in its history, which suggests a commitment to security or at least good fortune. Furthermore, the code analysis shows no dangerous functions, all SQL queries are properly prepared, and the vast majority of output is correctly escaped, minimizing risks of common injection and cross-site scripting vulnerabilities.

However, there are areas of concern that prevent a perfect score. The complete lack of nonce checks and capability checks on any identified entry points (though none were found) is a significant red flag. If any entry points were to be discovered or introduced in future versions, they would be inherently unprotected against CSRF and unauthorized access. The presence of file operations and external HTTP requests, while not inherently malicious, represent potential attack vectors if not handled with extreme care and input validation, especially given the absence of taint analysis data.

In conclusion, while the plugin exhibits good practices regarding SQL and output escaping, and boasts a clean vulnerability history, the absence of any authentication or authorization checks on potential entry points is a notable weakness. The lack of taint analysis also means potential issues in this area are undiscovered. The plugin is not exhibiting critical vulnerabilities based on this analysis, but future development should prioritize robust authentication and authorization mechanisms.

Key Concerns

Missing Nonce Checks on Entry Points
Missing Capability Checks on Entry Points
No Taint Analysis Performed
File Operations Present
External HTTP Requests Present

Vulnerabilities

None known

Ticketleo Events Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Ticketleo Events Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

147 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

94% escaped156 total outputs

Attack Surface

Ticketleo Events Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 3

actioninitclasses\class-tlevents-block.php:15

actionenqueue_block_assetsclasses\class-tlevents-main.php:8

actionplugins_loadedticketleo-events.php:34

Maintenance & Trust

Ticketleo Events Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedFeb 19, 2025

PHP min version8.1

Downloads845

Community Trust

Rating0/100

Number of ratings0

Active installs20

Alternatives

Ticketleo Events Alternatives

Ticket Tailor — Event Ticketing & Registration

ticket-tailor

100

Sell event tickets online via your WordPress website. Ticket Tailor is an easy event ticketing & event registration system.

4K 1 CVE

TicketSource Ticket Shop

ticketsource-events

Sell event tickets online directly through your WordPress site with TicketSource. An easy to use, self service box office system.

800 1 CVE

Explara Events

explara-events

Managing events shouldn’t be complex and costly. Now integrate the power of Explara to your existing Wordpress site with the Explara Events plugin.

10 1 unpatched

Purplepass plugin for The Event Calendar

purplepass-ticketing

The Purplepass Ticketing plugin for Modern Tribe's Event Calendar allows you to add a robust ticketing system directly within your Wordpress webs …

10 No CVEs

Sugar Events Calendar – Ninja Forms Add-on

sugar-events-calendar-ninja-forms-add-on

Add registrations forms for your Sugar Events Calendar events using Ninja Forms.

10 No CVEs

Developer Profile

Ticketleo Events Developer Profile

Hayloft

1 plugin · 20 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Ticketleo Events

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/ticketleo-events/src/style.css

Version Parameters

ticketleo-events/src/style.css?ver=

HTML / DOM Fingerprints

CSS Classes

error-message

Data Attributes

data-view-optiondata-event-id

REST Endpoints

/wp-json/wp/v2/event/wp-json/wp/v2/event-list

Shortcode Output

<div class="tlevents-event-list"><div class="tlevents-event-single">

FAQ