Unspecified Vulnerability in WordPress Plugin ELEX WordPress HelpDesk & Customer Ticketing System

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A security vulnerability exists in the WordPress plugin ELEX WordPress HelpDesk & Customer...

EUVD-2025-2698

Malicious code in bioql PyPI...

EUVD-2024-52444

Malicious code in bioql PyPI...

EUVD-2024-45865

Malicious code in bioql PyPI...

EUVD-2023-41764

Malicious code in bioql PyPI...

EUVD-2024-52427

Malicious code in bioql PyPI...

CVE-2025-22298

Missing Authorization vulnerability in Hive Support Hive Support hive-support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Hive Support: from n/a through = 1.1.6...

CVE-2024-54321

Cross-Site Request Forgery CSRF vulnerability in Hive Support Hive Support hive-support allows Cross Site Request Forgery.This issue affects Hive Support: from n/a through = 1.1.2...

CVE-2024-52370

Unrestricted Upload of File with Dangerous Type vulnerability in Hive Support Hive Support hive-support allows Upload a Web Shell to a Web Server.This issue affects Hive Support: from n/a through = 1.1.1...

CVE-2024-54304

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Hive Support Hive Support hive-support allows SQL Injection.This issue affects Hive Support: from n/a through = 1.1.2...

CVE-2024-8548

The KB Support – WordPress Help Desk and Knowledge Base plugin for WordPress is vulnerable to unauthorized modification and loss of data due to a missing capability check on several functions in the /includes/ajax-functions.php file all versions up to, and including, 1.6.6. This makes it possible...

WordPress JS Help Desk plugin <= 2.8.8 - Authenticated (Subscriber+) Insecure Direct Object Reference vulnerability

Authenticated Subscriber+ Insecure Direct Object Reference vulnerability discovered by Tim Coen in WordPress Plugin JS Help Desk versions = 2.8.8...

CVE-2025-22298

Missing Authorization vulnerability in Hive Support Hive Support hive-support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Hive Support: from n/a through = 1.1.6...

CVE-2024-54321

Cross-Site Request Forgery CSRF vulnerability in Hive Support Hive Support hive-support allows Cross Site Request Forgery.This issue affects Hive Support: from n/a through = 1.1.2...

CVE-2024-54304

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Hive Support Hive Support hive-support allows SQL Injection.This issue affects Hive Support: from n/a through = 1.1.2...

CVE-2024-54321

CVE-2024-54321: CSRF vulnerability in the Hive Support WordPress Help Desk plugin; affects Hive Support – WordPress Help Desk versions up to 1.1.2. The connected documents confirm CSRF wording but do not provide detailed exploit steps, affected files, root cause, or a concrete mitigation beyond t...

CVE-2024-54304 WordPress Hive Support plugin <= 1.1.2 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Hive Support Hive Support hive-support allows SQL Injection.This issue affects Hive Support: from n/a through = 1.1.2...

CVE-2024-54304

CVE-2024-54304 is an SQL Injection in the Hive Support WordPress Help Desk plugin. Affected: Hive Support – WordPress Help Desk (plugin) versions up to 1.1.2. Root cause: Improper neutralization of SQL elements in the vulnerability path. Impact: authenticated attackers may exploit to manipulate S...

PT-2024-36185 · WordPress · Hive Support – Wordpress Help Desk

Name of the Vulnerable Software and Affected Versions: Hive Support – WordPress Help Desk versions 1.1.2 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks...

CVE-2024-52370

Unrestricted Upload of File with Dangerous Type vulnerability in Hive Support Hive Support hive-support allows Upload a Web Shell to a Web Server.This issue affects Hive Support: from n/a through = 1.1.1...