JS Help Desk WordPress Plugin SQL Injection Vulnerability

A SQL injection vulnerability has been identified in the JS Help Desk – AI-Powered Support & Ticketing System plugin for WordPress, affecting all versions through 3.0.4. The vulnerability arises in the 'storeTickets()' function, where the 'multiformid' parameter is passed to 'esc_sql()' without proper quotation, allowing unauthenticated attackers to inject additional SQL commands. This exploitation could lead to unauthorized access to sensitive database information.

Impact

Exploitation of this vulnerability allows for SQL injection, where attackers can manipulate database queries to extract sensitive information from the database.

Reproduction

To reproduce this vulnerability, send a request to the 'storeTickets()' function with a 'multiformid' parameter that includes SQL injection payloads. The absence of quotes around the 'multiformid' value in the SQL query allows the injection to bypass the escaping and manipulate the query execution.

Remediation

Users are advised to update the JS Help Desk – AI-Powered Support & Ticketing System plugin to version 3.0.5 or later.