Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

JS Help Desk — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting JS Help Desk. AI-powered Chinese analysis, POCs, and references for each vulnerability.

JS Help Desk is a customer support platform designed to streamline ticket management and communication between support teams and clients. Historically, it has been susceptible to multiple vulnerability classes, including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation, with 10 CVEs documented to date. Notable security characteristics include its web-based architecture, which exposes it to common web application vulnerabilities. While no major public incidents have been widely reported, the consistent appearance of CVEs suggests ongoing security challenges that require regular patching and input validation to mitigate risks associated with user-supplied data processing.

Top products by JS Help Desk: JS Help Desk – Best Help Desk & Support Plugin JS Help Desk
CVE IDTitleCVSSSeverityPublished
CVE-2022-46840 WordPress JS Help Desk plugin <= 2.7.1 - Broken Access Control — JS Help Desk – Best Help Desk & Support PluginCWE-862 5.4 Medium2024-12-13
CVE-2022-46838 WordPress JS Help Desk plugin <= 2.7.1 - Unauthenticated Settings Change Vulnerability — JS Help Desk – Best Help Desk & Support PluginCWE-862 9.1 Critical2024-12-13
CVE-2024-43274 WordPress JS Help Desk – The Ultimate Help Desk plugin <= 2.8.6 - Broken Access Control vulnerability — JS Help Desk – Best Help Desk & Support PluginCWE-862 5.8 Medium2024-11-01
CVE-2024-31273 WordPress JS Help Desk plugin <= 2.8.3 - Broken Access Control vulnerability — JS Help Desk – Best Help Desk & Support PluginCWE-862 5.3 Medium2024-06-09
CVE-2023-25444 WordPress JS Help Desk – Best Help Desk & Support Plugin plugin <= 2.7.7 - Arbitrary File Upload vulnerability — JS Help Desk – Best Help Desk & Support PluginCWE-434 9.1 Critical2024-05-17
CVE-2022-47151 WordPress JS Help Desk plugin <= 2.7.1 - Unauth. SQL Injection Vulnerability — JS Help Desk – Best Help Desk & Support PluginCWE-89 8.6 High2024-04-17
CVE-2022-46839 WordPress JS Help Desk – Best Help Desk & Support Plugin Plugin <= 2.7.1 is vulnerable to Arbitrary File Upload — JS Help Desk – Best Help Desk & Support PluginCWE-434 10.0 Critical2024-01-05
CVE-2023-50839 WordPress JS Help Desk – Best Help Desk & Support Plugin <= 2.8.1 is vulnerable to SQL Injection — JS Help Desk – Best Help Desk & Support PluginCWE-89 9.3 Critical2023-12-28
CVE-2023-23679 WordPress JS Help Desk – Best Help Desk & Support Plugin Plugin <= 2.7.7 is vulnerable to Insecure Direct Object References (IDOR) — JS Help DeskCWE-639 4.6 Medium2023-06-23
CVE-2022-46842 WordPress JS Help Desk plugin <= 2.7.1 is vulnerable to Cross Site Request Forgery (CSRF) — JS Help DeskCWE-352 5.4 Medium2023-02-02

This page lists every published CVE security advisory associated with JS Help Desk. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.