Support Ticket System Project

Support Ticket System

4 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2024-10627

  • EPSS 8.75%
  • Veröffentlicht 09.11.2024 04:15:04
  • Zuletzt bearbeitet 05.06.2025 16:59:15

The WooCommerce Support Ticket System plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajax_manage_file_chunk_upload() function in all versions up to, and including, 17.7. This makes it possible ...

9.1

CVE-2024-10625

  • EPSS 40.62%
  • Veröffentlicht 09.11.2024 04:15:03
  • Zuletzt bearbeitet 28.05.2025 20:49:53

The WooCommerce Support Ticket System plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_tmp_uploaded_file() function in all versions up to, and including, 17.7. This makes it possible...

8.1

CVE-2024-10626

  • EPSS 24.48%
  • Veröffentlicht 09.11.2024 04:15:03
  • Zuletzt bearbeitet 28.05.2025 20:48:34

The WooCommerce Support Ticket System plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_uploaded_file() function in all versions up to, and including, 17.7. This makes it possible for...

9.8

CVE-2015-7670

  • EPSS 0.66%
  • Veröffentlicht 26.09.2017 15:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Multiple SQL injection vulnerabilities in includes/update.php in the Support Ticket System plugin before 1.2.1 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) user or (2) id parameter.