exploitDog

CVE-2025-60235

Опубликовано: 06 нояб. 2025

Источник: nvd

CVSS3: 10

EPSS Низкий

Описание

Unrestricted Upload of File with Dangerous Type vulnerability in Plugify Helpdesk Support Ticket System for WooCommerce support-ticket-system-for-woocommerce allows Using Malicious Files.This issue affects Helpdesk Support Ticket System for WooCommerce: from n/a through <= 2.1.0.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/support-ticket-system-for-woocommerce/vulnerability/wordpress-helpdesk-support-ticket-system-for-woocommerce-plugin-2-0-7-arbitrary-file-upload-vulnerability?_s_id=cve

EPSS

Процентиль: 19%

0.00061

Низкий

10 Critical

CVSS3

Дефекты

CWE-434

Связанные уязвимости

GHSA-c6wq-6jc2-6vpr

CVSS3: 10

github

3 месяца назад

Unrestricted Upload of File with Dangerous Type vulnerability in Plugify Helpdesk Support Ticket System for WooCommerce support-ticket-system-for-woocommerce allows Using Malicious Files.This issue affects Helpdesk Support Ticket System for WooCommerce: from n/a through <= 2.1.0.

EPSS

Процентиль: 19%

0.00061

Низкий

10 Critical

CVSS3

Дефекты

CWE-434