Lucene search
K

3385 matches found

OSV
OSV
added 2025/04/01 6:15 a.m.2 views

CVE-2025-30878

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JoomSky JS Help Desk allows Path Traversal. This issue affects JS Help Desk: from n/a through 2.9.2...

9.1CVSS5.8AI score0.00554EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/04/01 6:15 a.m.0 views

CVE-2025-30878

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JoomSky JS Help Desk js-support-ticket allows Path Traversal.This issue affects JS Help Desk: from n/a through = 2.9.2...

9.1CVSS7.2AI score0.00554EPSS
Exploits0References3
NVD
NVD
added 2025/04/01 6:15 a.m.15 views

CVE-2025-30878

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JoomSky JS Help Desk js-support-ticket allows Path Traversal.This issue affects JS Help Desk: from n/a through = 2.9.2...

9.1CVSS0.00554EPSS
Exploits0References1
NVD
NVD
added 2025/04/01 6:15 a.m.16 views

CVE-2025-30880

Missing Authorization vulnerability in JoomSky JS Help Desk js-support-ticket allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JS Help Desk: from n/a through = 2.9.2...

7.5CVSS0.00435EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/01 5:31 a.m.18 views

CVE-2025-30886 WordPress JS Help Desk plugin <= 2.9.2 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in JoomSky JS Help Desk js-support-ticket allows SQL Injection.This issue affects JS Help Desk: from n/a through = 2.9.2...

9.3CVSS0.00465EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/01 5:31 a.m.14 views

CVE-2025-30901 WordPress JS Help Desk plugin <= 2.9.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in JoomSky JS Help Desk js-support-ticket allows PHP Local File Inclusion.This issue affects JS Help Desk: from n/a through = 2.9.2...

8.1CVSS0.00761EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/01 5:31 a.m.10 views

CVE-2025-30886 WordPress JS Help Desk plugin <= 2.9.2 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in JoomSky JS Help Desk js-support-ticket allows SQL Injection.This issue affects JS Help Desk: from n/a through = 2.9.2...

9.3CVSS7.4AI score0.00465EPSS
Exploits0References1
CVE
CVE
added 2025/04/01 5:31 a.m.55 views

CVE-2025-30901

CVE-2025-30901 affects WordPress JS Help Desk (JS Help Desk plugin) and is an unauthenticated Local File Inclusion via improper filename handling in PHP includes. The vulnerability affects JS Help Desk

8.1CVSS7.2AI score0.00761EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/01 5:31 a.m.5 views

CVE-2025-30901 WordPress JS Help Desk plugin <= 2.9.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in JoomSky JS Help Desk js-support-ticket allows PHP Local File Inclusion.This issue affects JS Help Desk: from n/a through = 2.9.2...

8.1CVSS7.4AI score0.00761EPSS
Exploits0References1
CVE
CVE
added 2025/04/01 5:31 a.m.65 views

CVE-2025-30886

CVE-2025-30886 is an unauthenticated SQL Injection affecting the WordPress plugin JS Help Desk (versions up to 2.9.2). The root cause is improper neutralization of input in an SQL command, leading to potential data disclosure/alteration. The issue is rated high/severe in public disclosures, and a...

10CVSS7.3AI score0.00465EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/04/01 5:31 a.m.65 views

CVE-2025-30880

CVE-2025-30880 : In the WordPress plugin "JS Help Desk – The Ultimate Help Desk & Support Plugin", a missing/incorrectly configured authorization issue is cited as a vulnerability. The CVSS 3.1 vector indicates an unauthenticated network attack with high impact on availability (base score 7.5, HI...

7.5CVSS7.2AI score0.00435EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/04/01 5:31 a.m.17 views

CVE-2025-30878 WordPress JS Help Desk plugin <= 2.9.2 - Arbitrary File Deletion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JoomSky JS Help Desk js-support-ticket allows Path Traversal.This issue affects JS Help Desk: from n/a through = 2.9.2...

8.6CVSS0.00554EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/01 5:31 a.m.7 views

CVE-2025-30878 WordPress JS Help Desk plugin <= 2.9.2 - Arbitrary File Deletion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JoomSky JS Help Desk js-support-ticket allows Path Traversal.This issue affects JS Help Desk: from n/a through = 2.9.2...

8.6CVSS7.3AI score0.00554EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/01 5:31 a.m.8 views

CVE-2025-30880 WordPress JS Help Desk plugin <= 2.9.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in JoomSky JS Help Desk js-support-ticket allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JS Help Desk: from n/a through = 2.9.2...

7.5CVSS7.3AI score0.00435EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/01 5:31 a.m.10 views

CVE-2025-30882 WordPress JS Help Desk plugin <= 2.9.1 - Arbitrary File Download vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JoomSky JS Help Desk js-support-ticket allows Path Traversal.This issue affects JS Help Desk: from n/a through = 2.9.1...

7.5CVSS7.3AI score0.00526EPSS
Exploits0References1
CVE
CVE
added 2025/04/01 5:31 a.m.60 views

CVE-2025-30882

The CVE-2025-30882 entry concerns JS Help Desk for WordPress with an Unauthenticated Path Traversal that allows Arbitrary File Download in versions up to 2.9.1. The vulnerability has a high potential impact (CVSS v3.1: 7.5, Attack Vector Network, Privileges None, User Interaction None) with Confi...

7.5CVSS7.2AI score0.00526EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/04/01 5:31 a.m.54 views

CVE-2025-30878

CVE-2025-30878 affects the WordPress plugin JS Help Desk (

9.1CVSS7.2AI score0.00554EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/01 12:0 a.m.5 views

PT-2025-14063 · Joomsky · Joomsky Js Help Desk

Name of the Vulnerable Software and Affected Versions: JoomSky JS Help Desk versions n/a through 2.9.1 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal'. This allows for Path Traversal in JoomSky JS Help Desk...

7.5CVSS9.1AI score0.00526EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/04/01 12:0 a.m.3 views

WordPress plugin JS Help Desk SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

9.3CVSS9AI score0.00465EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/04/01 12:0 a.m.3 views

WordPress plugin JS Help Desk 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

7.5CVSS8.5AI score0.00526EPSS
Exploits0References2
Rows per page
Query Builder