exploitDog

CVE-2025-49372

Опубликовано: 06 нояб. 2025

Источник: nvd

CVSS3: 10

EPSS Низкий

Описание

Improper Control of Generation of Code ('Code Injection') vulnerability in VillaTheme HAPPY happy-helpdesk-support-ticket-system allows Remote Code Inclusion.This issue affects HAPPY: from n/a through <= 1.0.7.

Ссылки

https://vdp.patchstack.com/database/Wordpress/Plugin/happy-helpdesk-support-ticket-system/vulnerability/wordpress-happy-plugin-1-0-7-remote-code-execution-rce-vulnerability?_s_id=cve

EPSS

Процентиль: 22%

0.00071

Низкий

10 Critical

CVSS3

Дефекты

CWE-94

Связанные уязвимости

GHSA-wj4q-gpcg-gvvm

CVSS3: 10

github

3 месяца назад

Improper Control of Generation of Code ('Code Injection') vulnerability in VillaTheme HAPPY happy-helpdesk-support-ticket-system allows Remote Code Inclusion.This issue affects HAPPY: from n/a through <= 1.0.7.

EPSS

Процентиль: 22%

0.00071

Низкий

10 Critical

CVSS3

Дефекты

CWE-94