JavaScript Injection Vulnerability in wp-support-plus-responsive-ticket-system Plugin by WordPress
CVE-2014-10391
6.1MEDIUM
Key Information:
- Vendor
- Wordpress
- Vendor
- CVE Published:
- 22 August 2019
Summary
The wp-support-plus-responsive-ticket-system plugin, prior to version 4.1, is susceptible to a JavaScript injection vulnerability. This flaw allows attackers to inject malicious JavaScript code into web pages, potentially compromising user interactions and data integrity. Maintaining updated plugins is crucial for safeguarding WordPress installations against such security risks.
References
CVSS V3.1
Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved