Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in JS Help Desk – Best Help Desk & Support Plugin 2.8.2

  • Severity: critical
  • Status: Open
  • Publication: December 21, 2023

The JS Help Desk – Best Help Desk & Support Plugin plugin for WordPress is vulnerable to a type of attack called SQL Injection. This type of attack allows unauthenticated attackers to extract sensitive information from the database. The attack is possible due to insufficient escaping and lack of preparation on user supplied parameters and existing SQL queries in all versions up to 2.8.2 (exclusive).

Detected in:

JS Help Desk – AI-Powered Help Desk & Support Plugin fixed vulnerable versions:
JS Help Desk – AI-Powered Support & Ticketing System fixed vulnerable versions:
JS Help Desk – The Ultimate Help Desk & Support Plugin fixed vulnerable versions:
JS Help Desk – Best Help Desk & Support Plugin open vulnerable versions: >= * < 2.8.2

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.