WordPress WP Support Plus Responsive Ticket System Plugin 2.0 - Multiple Vulnerabilities
WP Support Plus Responsive Ticket System
There are 4 multiple vulnerabilities in this plugin.
1. SQL injection.
2. Full path disclosure. With this vulnerability full path to the file will be shown to the user after the file has been uploaded.
3. Directory traversal that allows download any file from the server.
4. Broken authentication.