MidnightBSD

Advisories for supportezzy_ticket_system_project

CVE-2014-9179 MEDIUM

Cross-site scripting (XSS) vulnerability in the SupportEzzy Ticket System plugin 1.2.5 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the "URL (optional)" field in a new ticket.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
supportezzy_ticket_system_project supportezzy_ticket_system 1.2.5