The Awesome Support WordPress plugin before 6.1.5 does not sanitize file paths when deleting temporary attachment files, allowing a ticket submitter to delete arbitrary files on the server.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:HGetawesomesupport Awesome Support
APPGetawesomesupport< 6.1.5
Related vulnerabilities
The Awesome Support – WordPress HelpDesk & Support Plugin plugin for WordPress is vulnerable to union-based SQ...
The awesome-support plugin before 3.1.7 for WordPress has a security issue in which shortcodes are allowed in ...
Missing Authorization vulnerability in awesomesupport Awesome Support awesome-support allows Exploiting Incorr...
Missing Authorization vulnerability in awesomesupport Awesome Support awesome-support allows Exploiting Incorr...
Missing Authorization vulnerability in awesomesupport Awesome Support awesome-support allows Exploiting Incorr...