Vulnerabilities > Wpsupportplus > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-22 | CVE-2016-10930 | Improper Input Validation vulnerability in Wpsupportplus WP Support Plus Responsive Ticket System The wp-support-plus-responsive-ticket-system plugin before 7.1.0 for WordPress has insecure direct object reference via a ticket number. | 9.8 |
| 2019-08-22 | CVE-2014-10390 | Path Traversal vulnerability in Wpsupportplus WP Support Plus Responsive Ticket System The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has directory traversal. | 9.1 |
| 2019-08-22 | CVE-2014-10389 | Improper Authentication vulnerability in Wpsupportplus WP Support Plus Responsive Ticket System The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has incorrect authentication. | 9.8 |
| 2019-08-22 | CVE-2014-10387 | SQL Injection vulnerability in Wpsupportplus WP Support Plus Responsive Ticket System The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has SQL injection. | 9.8 |
| 2018-03-14 | CVE-2018-1000131 | SQL Injection vulnerability in Wpsupportplus WP Support Plus Responsive Ticket System Pradeep Makone wordpress Support Plus Responsive Ticket System version 9.0.2 and earlier contains a SQL Injection vulnerability in the function to get tickets, the parameter email in cookie was injected that can result in filter the parameter. | 9.8 |