22 matches found
EUVD-2026-15909
Authorization Bypass Through User-Controlled Key vulnerability in JoomSky JS Help Desk js-support-ticket allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JS Help Desk: from n/a through = 3.0.3...
EUVD-2025-9076
Malicious code in bioql PyPI...
EUVD-2025-9081
Malicious code in bioql PyPI...
EUVD-2025-9084
Malicious code in bioql PyPI...
CVE-2025-30878
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JoomSky JS Help Desk js-support-ticket allows Path Traversal.This issue affects JS Help Desk: from n/a through = 2.9.2...
CVE-2025-30882
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JoomSky JS Help Desk js-support-ticket allows Path Traversal.This issue affects JS Help Desk: from n/a through = 2.9.1...
CVE-2025-30901
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in JoomSky JS Help Desk js-support-ticket allows PHP Local File Inclusion.This issue affects JS Help Desk: from n/a through = 2.9.2...
CVE-2025-30886
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in JoomSky JS Help Desk js-support-ticket allows SQL Injection.This issue affects JS Help Desk: from n/a through = 2.9.2...
CVE-2025-30880
Missing Authorization vulnerability in JoomSky JS Help Desk js-support-ticket allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JS Help Desk: from n/a through = 2.9.2...
CVE-2025-30901
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in JoomSky JS Help Desk js-support-ticket allows PHP Local File Inclusion.This issue affects JS Help Desk: from n/a through = 2.9.2...
CVE-2025-30882
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JoomSky JS Help Desk js-support-ticket allows Path Traversal.This issue affects JS Help Desk: from n/a through = 2.9.1...
CVE-2025-30886
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in JoomSky JS Help Desk js-support-ticket allows SQL Injection.This issue affects JS Help Desk: from n/a through = 2.9.2...
CVE-2025-30878
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JoomSky JS Help Desk js-support-ticket allows Path Traversal.This issue affects JS Help Desk: from n/a through = 2.9.2...
CVE-2025-30901 WordPress JS Help Desk plugin <= 2.9.2 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in JoomSky JS Help Desk js-support-ticket allows PHP Local File Inclusion.This issue affects JS Help Desk: from n/a through = 2.9.2...
CVE-2025-30886 WordPress JS Help Desk plugin <= 2.9.2 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in JoomSky JS Help Desk js-support-ticket allows SQL Injection.This issue affects JS Help Desk: from n/a through = 2.9.2...
CVE-2025-30886
CVE-2025-30886 is an unauthenticated SQL Injection affecting the WordPress plugin JS Help Desk (versions up to 2.9.2). The root cause is improper neutralization of input in an SQL command, leading to potential data disclosure/alteration. The issue is rated high/severe in public disclosures, and a...
CVE-2025-30882
The CVE-2025-30882 entry concerns JS Help Desk for WordPress with an Unauthenticated Path Traversal that allows Arbitrary File Download in versions up to 2.9.1. The vulnerability has a high potential impact (CVSS v3.1: 7.5, Attack Vector Network, Privileges None, User Interaction None) with Confi...
CVE-2025-30880
CVE-2025-30880 : In the WordPress plugin "JS Help Desk – The Ultimate Help Desk & Support Plugin", a missing/incorrectly configured authorization issue is cited as a vulnerability. The CVSS 3.1 vector indicates an unauthenticated network attack with high impact on availability (base score 7.5, HI...
PT-2025-14063 · Joomsky · Joomsky Js Help Desk
Name of the Vulnerable Software and Affected Versions: JoomSky JS Help Desk versions n/a through 2.9.1 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal'. This allows for Path Traversal in JoomSky JS Help Desk...
PT-2025-14064 · Joomsky · Joomsky Js Help Desk
Name of the Vulnerable Software and Affected Versions: JoomSky JS Help Desk versions 2.9.2 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows unauthorized SQL commands to be execute...