cleantalk
Vulnerabilities and Security Researches

Support Ticket System, CVE-2015-7670

CVE, Research URL

CVE-2015-7670

Home page URL

Security reports for Support Ticket System

Application

Support Ticket System

Published on
Sep 26, 2017
Research Description
Multiple SQL injection vulnerabilities in includes/update.php in the Support Ticket System plugin before 1.2.1 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) user or (2) id parameter.
Affected versions
max 1.2.1.
Status
vulnerable
Previous vulnerability researches
Support Ticket System (CVE-2015-7670) , Jun 10, 2024
New vulnerability
Photo Gallery by 10Web – Mobile-Friendly Image Gallery (CVE-2026-49771) , Jun 06, 2026
Popup Builder – Create highly converting, mobile friendly marketing popups. (CVE-2019-25744) , Jun 06, 2026
WP Google Review Slider (CVE-2019-25745) , Jun 06, 2026
LMS by Masteriyo – WordPress Learning Management System, eLearning Platform, Online Education System & Online Course (CVE-2026-42743) , Jun 05, 2026
Printeers Print & Ship (CVE-2025-52766) , Jun 05, 2026