Vulnerabilities and security researches forguest-support guest-support

Jul 08, 2025

CVE, Research URL: CVE-2025-5957
Home page URL: Security reports for Guest Support – Complete customer support ticket system for WordPress
Application: Guest Support – Complete customer support ticket system for WordPress
Date: Jul 08, 2025
Research Description: The Guest Support – Complete customer support ticket system for WordPress plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'deleteMassTickets' function in all versions up to, and including, 1.2.2. This makes it possible for unauthenticated attackers to delete arbitrary support tickets.
Affected versions: Min -, max -.
Status: vulnerable