Every CVE whose affected-product data names Elula Wsdesk, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2025-47658 — CVSS 9.9 (critical): Unrestricted Upload of File with Dangerous Type vulnerability in ELEXtensions ELEX WordPress HelpDesk & Customer Ticketing System…
CVE-2025-11456 — CVSS 9.8 (critical): The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to arbitrary file uploads due to missing file…
CVE-2024-12171 — CVSS 8.8 (high): The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to privilege escalation due to a missing…
CVE-2025-13534 — CVSS 6.3 (medium): The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to Privilege Escalation in all versions up to…
CVE-2025-12022 — CVSS 4.3 (medium): The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to unauthorized modification of data due to a…
CVE-2025-12023 — CVSS 4.3 (medium): The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to unauthorized modification of data due to a…
CVE-2025-10054 — CVSS 4.3 (medium): The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to unauthorized modification of data due to a…
CVE-2025-12169 — CVSS 4.3 (medium): The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to unauthorized modification of data due to a…
CVE-2025-10039 — CVSS 4.3 (medium): The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to Insecure Direct Object Reference in all…
CVE-2025-12085 — CVSS 4.3 (medium): The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to unauthorized modification of data due to a…