EUVD-2023-29884

Malicious code in bioql PyPI...

CVE-2023-25997

Missing Authorization vulnerability in SolaPlugins Sola Support Ticket allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Sola Support Ticket: from n/a through 3.17...

CVE-2023-25997

Missing Authorization vulnerability in SolaPlugins Sola Support Ticket allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Sola Support Ticket: from n/a through 3.17...

CVE-2023-25997 WordPress Sola Support Ticket plugin <= 3.18 - Arbitrary Content Deletion Vulnerability

Missing Authorization vulnerability in SolaPlugins Sola Support Ticket sola-support-tickets allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sola Support Ticket: from n/a through = 3.18...

CVE-2023-25997 WordPress Sola Support Ticket <= 3.17 - Arbitrary Content Deletion Vulnerability

Missing Authorization vulnerability in SolaPlugins Sola Support Ticket allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Sola Support Ticket: from n/a through 3.17...

CVE-2023-25997

CVE-2023-25997 is linked to the WordPress plugin “Sola Support Tickets.” The connected evidence shows a Missing Authorization vulnerability in Sola Plugins Sola Support Ticket that could permit Arbitrary Content Deletion via insufficient access control on updated versions up to 3.17. The Wordfenc...

WordPress plugin Sola Support Ticket 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

PT-2025-24105 · Solaplugins · Sola Support Ticket

Name of the Vulnerable Software and Affected Versions: Sola Support Ticket versions 3.17 and earlier Description: The issue is related to a Missing Authorization vulnerability in SolaPlugins Sola Support Ticket, which allows exploiting incorrectly configured access control security levels...

WordPress Sola Support Ticket plugin <= 3.18 - Arbitrary Content Deletion Vulnerability

Arbitrary Content Deletion Vulnerability discovered by luckybuddy in WordPress Plugin Sola Support Ticket versions = 3.18...

CVE-2016-11012

The sola-support-tickets plugin before 3.13 for WordPress has incorrect access control for /wp-admin with resultant XSS...

Cross site scripting

The sola-support-tickets plugin before 3.13 for WordPress has incorrect access control for /wp-admin with resultant XSS...

CVE-2016-11012

The CVE-2016-11012 entry affects the WordPress plugin sola-support-tickets prior to version 3.13 . The vulnerability is an incorrect access control for /wp-admin that enables an XSS condition. Public-facing details confirm an admin-page access issue can lead to script injections; no further explo...

Sola Support Ticket <= 3.12 - XSS & Configuration Change

Any logged in user with any role and access to wp-admin in any way can update plugin settings including allowing HTML to be parsed. One can also change any notification messages to include JS which then can be used to obtain information by forgery. Make POST request to /wp-admin with parameters...

WordPress Sola Support Ticket Plugin <= 3.12 - Multiple Vulnerabilities

Anyone, who is logged in user and access to wp-admin, can update settings, allowing HTML to be analyzed. For this reason, information can be obtained. Solution Update the plugin...