Vulnerability: Arbitrary Ticket Deletion via Cross-Site Request Forgery (CSRF) Vulnerability: Reflected Cross-Site Scripting (XSS) Vulnerability: Unauthenticated Arbitrary Ticket DeletionĬVSS 3.0 score: 6.5 (Medium - Can be exploited remotely without any authentication.) This plugin adds a helpdesk ticket system to your WordPress site. SupportCandy – Helpdesk & Support Ticket System Read more about the vulnerabilities here. This WordPress core 5.8.3 security update addresses 4 different security vulnerabilities which affect WordPress core versions between 3.7 and 5.8. On the 6th of January 2022, released a security update and recommended users to “update your sites immediately”. Update the WordPress Order Tracking plugin to the latest available version (at least 3.0.17). Vulnerability: Cross-Site Request Forgery (CSRF) leading to Order, Customer and Sales Representative DeletionĬross-Site Request Forgery (CSRF) leading to Order, Customer and Sales Representative Deletion discovered in WordPress Order Tracking plugin (versions <= 3.0.16). Order tracking and status tracking software that allows you to quickly and easily manage the status of your orders, projects, shipments, or any other item.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |