EUVD-2025-26999

Malicious code in bioql PyPI...

CVE-2025-9990

The WordPress Helpdesk Integration plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 5.8.10 via the portaltype parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary .php files on the server, allowing the...

CVE-2025-9990 WordPress Helpdesk Integration <= 5.8.10 - Unauthenticated Local File Inclusion

The WordPress Helpdesk Integration plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 5.8.10 via the portaltype parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary .php files on the server, allowing the...

WordPress WordPress Helpdesk Integration plugin <= 5.8.10 - Unauthenticated Local File Inclusion vulnerability

Unauthenticated Local File Inclusion vulnerability discovered by Aril Aprilio forsak3n in WordPress Plugin WordPress Helpdesk Integration versions = 5.8.10...

CVE-2024-12443

CVE-2024-12443 affects the CRM Perks – WordPress HelpDesk Integration plugin for WordPress. It is a Stored XSS vulnerability in the crm-perks-tickets shortcode present in all versions up to 1.1.6, caused by insufficient input sanitization and output escaping on user-supplied attributes. Exploitat...

PT-2024-17594 · WordPress · Crm Perks – Wordpress Helpdesk Integration – Zendesk

Name of the Vulnerable Software and Affected Versions: The CRM Perks – WordPress HelpDesk Integration – Zendesk, Freshdesk, HelpScout plugin for WordPress versions up to, and including, 1.1.6 Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'crm-perks-tickets'...