Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/12/22 3:23 a.m.3 views

CVE-2025-9343

The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to Stored Cross-Site Scripting via ticket subjects in all versions up to, and including, 3.3.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attacker...

7.2CVSS5.2AI score0.00194EPSS
Exploits0References1
NVD
NVD
added 2025/12/21 4:16 a.m.6 views

CVE-2025-9343

The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to Stored Cross-Site Scripting via ticket subjects in all versions up to, and including, 3.3.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attacker...

7.2CVSS0.00194EPSS
Exploits0References2
CVE
CVE
added 2025/12/21 3:20 a.m.18 views

CVE-2025-9343

CVE-2025-9343 : Stored XSS in the ELEX WordPress HelpDesk & Customer Ticketing System plugin (

7.2CVSS4.9AI score0.00194EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/21 3:20 a.m.16 views

CVE-2025-9343 ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.4 - Unauthenticated Stored Cross-Site Scripting

The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to Stored Cross-Site Scripting via ticket subjects in all versions up to, and including, 3.3.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attacker...

7.2CVSS0.00194EPSS
Exploits0References2
Rows per page
Query Builder