Awesome Support – WordPress HelpDesk & Support Plugin, CVE-2023-5355

CVE, Research URL: CVE-2023-5355
Home page URL: Security reports for Awesome Support – WordPress HelpDesk & Support Plugin
Application: Awesome Support – WordPress HelpDesk & Support Plugin
Published on: Nov 07, 2023
Research Description: The Awesome Support WordPress plugin before 6.1.5 does not sanitize file paths when deleting temporary attachment files, allowing a ticket submitter to delete arbitrary files on the server.
Affected versions: Min -, max 6.1.5.
Status: vulnerable

Awesome Support &#8211; WordPress HelpDesk &amp; Support Plugin, CVE-2023-5355