CVE-2026-48887

MEDIUM6.5JSON export Create alert

Description

Unauthenticated Broken Access Control in JS Help Desk <= 3.0.9 versions.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

Low

Availability

Low

Affected products

Ahmad / JS Help Deskn/a – 3.0.9

References

MISChttps://patchstack.com/database/wordpress/plugin/js-support-ticket/vulnerability/wordpress-js-help-desk-plugin-3-0-9-broken-access-control-vulnerability?_s_id=cve