ELEX WordPress HelpDesk & Customer Ticketing System < 3.2.7 – Missing Authorization to Authenticated (Subscriber+) Privilege Escalation | CVE 2024-12171 | Plugin Vulnerabilities

Description

The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on the 'eh_crm_agent_add_user' AJAX action in all versions up to, and including, 3.2.6. This makes it possible for authenticated attackers, with Subscriber-level access and above, to create new administrative user accounts.

Affects Plugins

elex-helpdesk-customer-support-ticket-system

Fixed in 3.2.7

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/cbcd978b-e81f-4c39-b2f7-adc948d21b1b

Classification

Type

NO AUTHORISATION

OWASP top 10

A5: Broken Access Control

CWE

CVSS

Miscellaneous

Original Researcher

Thanh Nam Tran

Verified

No

WPVDB ID

a860be47-8be0-4174-8e67-da896e08a666

Timeline

Publicly Published

2025-01-31 (about 1 year ago)

Added

2025-01-31 (about 1 year ago)

Last Updated

2025-02-01 (about 1 year ago)

Other

Published

Title

Published

2025-12-18

Title

DirectoryPress – Business Directory And Classified Ad Listing < 3.6.27 - Missing Authorization

Published

2025-01-16

Title

Goldstar <= 2.1.1 - Missing Authorization

Published

2024-04-15

Title

Customer Reviews for WooCommerce < 5.47.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Email Sending

Published

2025-02-18

Title

MediCenter - Health Medical Clinic WordPress Theme < 14.7 - Missing Authorization

Published

2023-12-07

Title

Login With Ajax < 4.2 - Missing Authorization