CVE-2025-14079 | ELEXtensions ELEX WordPress HelpDesk & Customer Ticketing System Plugin Setting eh_crm_ticket_general authorization

Inserito da Angelo Barbosa | Feb 5, 2026 | CVE

A vulnerability categorized as problematic has been discovered in ELEXtensions ELEX WordPress HelpDesk & Customer Ticketing System Plugin up to 3.3.5 on WordPress. This affects the function eh_crm_ticket_general of the component Setting Handler. The manipulation results in missing authorization.

This vulnerability was named CVE-2025-14079. The attack may be performed from remote. There is no available exploit.

CVE-2025-14079 | ELEXtensions ELEX WordPress HelpDesk & Customer Ticketing System Plugin Setting eh_crm_ticket_general authorization

Post correlati

CVE-2024-2507 | JetWidgets for Elementor Plugin up to 1.0.16 on WordPress Widget Button URL cross site scripting

CVE-2024-24060 | springboot-manager 1.6 /sys/user cross site scripting

CVE-2024-26222 | Microsoft unknown vulnerability

CVE-2026-20975 | Samsung Cloud up to 5.6.10 insufficient permissions or privileges