CVE-2025-47658 – ELEX WordPress HelpDesk & Customer Ticketing System Unrestricted File Upload RCE

May 25, 2025

CVE ID : CVE-2025-47658

Published : May 23, 2025, 1:15 p.m. | 1 day, 13 hours ago

Description : Unrestricted Upload of File with Dangerous Type vulnerability in ELEXtensions ELEX WordPress HelpDesk & Customer Ticketing System allows Upload a Web Shell to a Web Server. This issue affects ELEX WordPress HelpDesk & Customer Ticketing System: from n/a through 3.2.7.

Severity: 9.9 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47670 – miniOrange WordPress Social Login and Register PHP Remote File Inclusion Vulnerability

Next Article CVE-2025-47672 – miniOrange Discord Integration PHP Remote File Inclusion Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Looking for an AI-powered website builder? Here’s your best option in 2025

SteamOS is officially not just for Steam Deck anymore — now ready for Lenovo Legion Go S and sort of ready for the ROG Ally

Microsoft’s latest AI model can accurately forecast the weather: “It doesn’t know the laws of physics, so it could make up something completely crazy”

OpenAI scientists wanted “a doomsday bunker” before AGI surpasses human intelligence and threatens humanity

A timeline of JavaScript’s history

A timeline of JavaScript’s history

Loading JSON Data into Snowflake From Local Directory

Streamline Conditional Logic with Laravel’s Fluent Conditionable Trait

Open-Typer is a typing tutor application

Open-Typer is a typing tutor application

RefreshOS is a distribution built on the robust foundation of Debian

Cosmicding is a client to manage your linkding bookmarks

CVE-2025-47658 – ELEX WordPress HelpDesk & Customer Ticketing System Unrestricted File Upload RCE

CVE-2025-47568 – ZoomSounds Deserialization Object Injection Vulnerability

CVE-2025-47575 – Mojoomla School Management SQL Injection

Are pre-owned smartphones safe? How to choose a second-hand phone and avoid security risks

City of Columbus Offers Credit Monitoring to Employees After Massive Cyberattack Hits Government Facilities

Google Drive is finally available for all Qualcomm Snapdragon Arm64 Windows 11 PCs

Here’s when Call of Duty: Black Ops 6 and Warzone Season 2 starts

FOSS Weekly #25.10: Skype is Dead, GNOME 48 Features, Ubuntu Versions, Nano Guide and More Linux Stuff

Microsoft AI Releases RD-Agent: An AI-Driven Tool for Performing R&D with LLM-based Agents

CVE-2025-32469 – RUGGEDCOM ROX Command Injection Vulnerability

Down Syndrome Diagnosis Network to Receive $5,000 Through Perficient Gives Global Grants Program

CVE-2025-47658 – ELEX WordPress HelpDesk & Customer Ticketing System Unrestricted File Upload RCE

Related Posts