CVE-2025-5957 – “WordPress Guest Support Unauthenticated Ticket Deletion Vulnerability”

July 8, 2025

CVE ID : CVE-2025-5957

Published : July 8, 2025, 5:15 a.m. | 1 hour, 36 minutes ago

Description : The Guest Support – Complete customer support ticket system for WordPress plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the ‘deleteMassTickets’ function in all versions up to, and including, 1.2.2. This makes it possible for unauthenticated attackers to delete arbitrary support tickets.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-7162 – PHPGurukul Zoo Management System SQL Injection Vulnerability

Next Article CVE-2025-5537 – FooBox Stored Cross-Site Scripting Vulnerability

Anthropic proposes transparency framework for frontier AI development

Sonatype Open Source Malware Index, Gemini API Batch Mode, and more – Daily News Digest

15 Top Node.js Development Service Providers for Large Enterprises in 2026

Droip: The Modern Website Builder WordPress Needed

The gaming headset I use every day is slashed to its lowest price ever thanks to Amazon Prime Day — “stellar battery life” awaits

How passkeys work: The complete guide to your inevitable passwordless future

This Sony OLED TV is my pick for best Prime Day deal – and it’s the last chance to get 50% off

Blizzard announces release date for World of Warcraft: The War Within’s 3rd major content patch — a patch that will feature the largest, city-sized raid boss in MMORPG history

Top PHP Projects for B.Tech Students: Learn Real Skills with PHPGurukul Projects

Top PHP Projects for B.Tech Students: Learn Real Skills with PHPGurukul Projects

Deno 2.4: deno bundle is back

From Silos to Synergy: Accelerating Your AI Journey

The gaming headset I use every day is slashed to its lowest price ever thanks to Amazon Prime Day — “stellar battery life” awaits

The gaming headset I use every day is slashed to its lowest price ever thanks to Amazon Prime Day — “stellar battery life” awaits

Blizzard announces release date for World of Warcraft: The War Within’s 3rd major content patch — a patch that will feature the largest, city-sized raid boss in MMORPG history

Microsoft recently raised the price of the Xbox Series S, but these retailers just dropped it back down again — close to the old price, but not for long

CVE-2025-5957 – “WordPress Guest Support Unauthenticated Ticket Deletion Vulnerability”

CVE-2025-49697 – Microsoft Office Heap Buffer Overflow Vulnerability

CVE-2025-49701 – Microsoft Office SharePoint Cross-Site Scripting (XSS)

Garmin unveils its Apple Ultra Watch 2 competitor, the Venu X1

OpenAI wants Microsoft to provide “money and compute and stay out of the way” as it renegotiates multi-billion-dollar partnership

“One of the best and most premium charging accessories” — Razer Universal Quick Charging Stand for Xbox is 40% off

CVE-2025-43947 – Codemers KLIMS Privilege Escalation Vulnerability

Apple vs. EU: AirDrop, AirPlay & Seamless Pairing at Risk in Europe!

CVE-2025-40580 – Siemens SCALANCE LPE9403 Stack-Based Buffer Overflow Vulnerability

I saved $30 a month by using these portable solar panels in my backyard

T-Mobile’s Starlink satellite service launches in July – here’s who can get it for free

CVE-2025-5957 – “WordPress Guest Support Unauthenticated Ticket Deletion Vulnerability”

Related Posts