Awesome Support Security Vulnerabilities and Issues — Awesome Support CVE List

Lucene search

GetawesomesupportAwesome Support

10 matches found

CVE•added 2024/01/05 10:15 a.m.•80 views

CVE-2023-51538

Cross-Site Request Forgery (CSRF) vulnerability in Awesome Support Team Awesome Support – WordPress HelpDesk & Support Plugin.This issue affects Awesome Support – WordPress HelpDesk & Support Plugin: from n/a through 6.1.5.

8.8CVSS8.6AI score0.0006EPSS

CVE•added 2024/12/09 1:15 p.m.•79 views

CVE-2023-48324

Missing Authorization vulnerability in Awesome Support Team Awesome Support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Awesome Support: from n/a through 6.1.4.

5.4CVSS5.6AI score0.00114EPSS

CVE•added 2024/12/09 1:15 p.m.•74 views

CVE-2023-49757

5.4CVSS5.6AI score0.00103EPSS

CVE•added 2024/02/10 7:15 a.m.•72 views

CVE-2024-0596

The Awesome Support – WordPress HelpDesk & Support Plugin plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the editor_html() function in all versions up to, and including, 6.1.7. This makes it possible for authenticated attackers, with subscribe...

5.3CVSS6AI score0.00142EPSS

CVE•added 2024/12/09 1:15 p.m.•67 views

CVE-2023-49857

6.5CVSS6.5AI score0.00125EPSS

CVE•added 2024/02/10 7:15 a.m.•65 views

CVE-2024-0595

The Awesome Support – WordPress HelpDesk & Support Plugin plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the wpas_get_users() function hooked via AJAX in all versions up to, and including, 6.1.7. This makes it possible for authenticated attackers, wit...

4.3CVSS5.2AI score0.00112EPSS

CVE•added 2024/02/10 7:15 a.m.•61 views

CVE-2024-0594

The Awesome Support – WordPress HelpDesk & Support Plugin plugin for WordPress is vulnerable to union-based SQL Injection via the 'q' parameter of the wpas_get_users action in all versions up to, and including, 6.1.7 due to insufficient escaping on the user supplied parameter and lack of sufficient...

8.8CVSS9AI score0.00323EPSS

CVE•added 2024/06/09 11:15 a.m.•54 views

CVE-2024-24716

Missing Authorization vulnerability in Awesome Support Team Awesome Support.This issue affects Awesome Support: from n/a through 6.1.6.

5.4CVSS5.5AI score0.0008EPSS

CVE•added 2024/06/09 9:15 a.m.•53 views

CVE-2024-30539

Missing Authorization vulnerability in Awesome Support Team Awesome Support.This issue affects Awesome Support: from n/a through 6.1.7.

9.8CVSS5.7AI score0.00348EPSS

CVE•added 2024/06/10 8:15 a.m.•41 views

CVE-2024-35741

Missing Authorization vulnerability in Awesome Support Team Awesome Support.This issue affects Awesome Support: from n/a through 6.1.7.

8.8CVSS5.7AI score0.00066EPSS