Vulnerabilities and security researches forruby-help-desk ruby-help-desk

Jun 07, 2024

CVE, Research URL: CVE-2023-1125
Home page URL: Security reports for Ruby Help Desk
Application: Ruby Help Desk
Date: May 02, 2023
Research Description: The Ruby Help Desk WordPress plugin before 1.3.4 does not ensure that the ticket being modified belongs to the user making the request, allowing an attacker to close and/or add files and replies to tickets other than their own.
Affected versions: Min -, max -.
Status: vulnerable