ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Sola Support Ticket Plugin <= 3.12 - Multiple Vulnerabilities

Product
Sola Support Ticket
Description
Anyone, who is logged in user and access to wp-admin, can update settings, allowing HTML to be analyzed. For this reason, information can be obtained.
Solution
Update the plugin.
Classification
Type BYPASS
References
WordPress
CVE
Name CVE-N/A
Versions
Affected In <= 3.12
Fixed In 3.13
Disclosure date
2016-01-28
Submitter
ThreatPress