3 matches found
CVE-2024-13552
The SupportCandy – Helpdesk & Customer Support Ticket System plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 3.3.0 via file upload due to missing validation on a user controlled key. This makes it possible for authenticated attackers to...
CVE-2024-13552
creationtimestamp| type| source ---|---|--- 2025-03-07 12:25:45+00:00| seen| https://t.me/cvedetector/19805 2025-03-07 14:38:24+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6833 2025-03-08 04:34:56+00:00| seen| Telegram/0Cuv1QWlA-rLV6AiKmRGQwI5GWH-njWf7Atbn8q3bj-9DDbo...
CVE-2024-13552
CVE-2024-13552 affects the WordPress plugin SupportCandy – Helpdesk & Customer Support Ticket System (