CVE-2026-1914
- EPSS 0.19%
- Veröffentlicht 21.03.2026 03:27:12
- Zuletzt bearbeitet 22.04.2026 21:32:08
The FuseDesk plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's fusedesk_newcase shortcode in all versions up to, and including, 6.8 due to insufficient input sanitization and output escaping on the 'emailtext' attribu...
CVE-2025-3832
- EPSS 0.26%
- Veröffentlicht 24.04.2025 08:23:50
- Zuletzt bearbeitet 15.04.2026 00:35:42
The FuseDesk plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘successredirect’ parameter in all versions up to, and including, 6.7 due to insufficient input sanitization and output escaping. This makes it possible for authen...
CVE-2024-13459
- EPSS 0.27%
- Veröffentlicht 12.02.2025 10:15:11
- Zuletzt bearbeitet 08.04.2026 19:20:15
The FuseDesk plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'fusedesk_newcase' shortcode in all versions up to, and including, 6.6.1 due to insufficient input sanitization and output escaping on user supplied attri...