Lucene search
K

6 matches found

Nuclei
Nuclei
added 15 hours ago44 views

JS Help Desk <= 2.8.1 - SQL Injection

The JS Help Desk – Best Help Desk & Support Plugin plugin for WordPress is vulnerable to SQL Injection via the ‘email' and 'trackingid' parameters in all versions up to 2.8.2 exclusive due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing S...

9.8CVSS7AI score0.02041EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/04 12:30 p.m.6 views

EUVD-2023-60537

The JS Help Desk – AI-Powered Support & Ticketing System plugin for WordPress is vulnerable to SQL Injection via the 'js-support-ticket-token-tkstatus' cookie in version 2.8.2 due to an incomplete fix for CVE-2023-50839 where a second sink was left with insufficient escaping on the user supplied...

9.8CVSS7.2AI score0.02041EPSS
Exploits0References3
NVD
NVD
added 2023/12/28 8:16 p.m.16 views

CVE-2023-50839

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in JS Help Desk JS Help Desk – Best Help Desk & Support Plugin.This issue affects JS Help Desk – Best Help Desk & Support Plugin: from n/a through 2.8.1...

9.8CVSS0.02041EPSS
Exploits0References1
CVE
CVE
added 2023/12/28 8:2 p.m.66 views

CVE-2023-50839

CVE-2023-50839 affects the JS Help Desk – Best Help Desk & Support Plugin for WordPress. The vulnerability is an unauthenticated SQL Injection via email and trackingid in JS Help Desk, impacting versions up to 2.8.1 (as noted in the CVE entry). The vulnerability is labeled as CRITICAL (CVSS v3.1:...

9.8CVSS8.9AI score0.02041EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/12/28 8:2 p.m.17 views

CVE-2023-50839 WordPress JS Help Desk – Best Help Desk & Support Plugin <= 2.8.1 is vulnerable to SQL Injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in JS Help Desk JS Help Desk – Best Help Desk & Support Plugin.This issue affects JS Help Desk – Best Help Desk & Support Plugin: from n/a through 2.8.1...

9.3CVSS10AI score0.02041EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/12/21 12:0 a.m.13 views

WordPress JS Help Desk – Best Help Desk & Support Plugin Plugin <= 2.8.1 is vulnerable to SQL Injection

Software JS Help Desk – Best Help Desk & Support Plugin Type Plugin Vulnerable versions = 2.8.1 Fixed in 2.8.2 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2023-50839 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID e03053a216be Credits Fariq Fadillah...

9.8CVSS6.8AI score0.02041EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder