CVE-2026-1914
- EPSS 0.03%
- Veröffentlicht 21.03.2026 03:27:12
- Zuletzt bearbeitet 23.03.2026 14:32:02
The FuseDesk plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's fusedesk_newcase shortcode in all versions up to, and including, 6.8 due to insufficient input sanitization and output escaping on the 'emailtext' attribu...
CVE-2025-3832
- EPSS 0.2%
- Veröffentlicht 24.04.2025 08:23:50
- Zuletzt bearbeitet 15.04.2026 00:35:42
The FuseDesk plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘successredirect’ parameter in all versions up to, and including, 6.7 due to insufficient input sanitization and output escaping. This makes it possible for authen...
CVE-2024-13459
- EPSS 0.21%
- Veröffentlicht 12.02.2025 10:15:11
- Zuletzt bearbeitet 08.04.2026 19:20:15
The FuseDesk plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'fusedesk_newcase' shortcode in all versions up to, and including, 6.6.1 due to insufficient input sanitization and output escaping on user supplied attri...