VulnTitan VulnTitan Security command center
Plugin Vulnerability Hub
Plugin 7 known issues Latest disclosed Jan 05, 2026

Fluent Support – Helpdesk & Customer Support Ticket System Vulnerabilities

Review known vulnerability records for the WordPress plugin Fluent Support – Helpdesk & Customer Support Ticket System (`fluent-support`), including severity, CVE references, affected versions, and patch status.

Recent tracked CVEs on this page include CVE-2025-67926, CVE-2025-57885 and CVE-2024-13568, so operators can jump from disclosure to patch validation without scanning the full feed first.

View on WordPress.org Back to Feed
Known Records
7
High or Critical
2
Patch Coverage
100%
Last Updated
Jan 14, 2026
Priority CVE Quick Links

Fast paths into Fluent Support – Helpdesk & Customer Support Ticket System CVE reports

Start with the highest-signal CVE records for this WordPress plugin before scanning the full vulnerability feed.

Indexed CVEs
7
CVE-2024-13568 High 1.8.6
CVE-2024-13568 Fluent Support – Helpdesk & Customer Support Ticket System Sensitive Information Exposure

Fluent Support – Helpdesk & Customer Support Ticket System <= 1.8.5 - Unauthenticated Sensitive Information Exposure Through Unprotected Directory

CVE-2022-2559 High 1.5.8
CVE-2022-2559 Fluent Support – Helpdesk & Customer Support Ticket System SQL Injection

Fluent Support <= 1.5.7 - Authenticated (Administrator+) SQL Injection

CVE-2023-51547 Medium 1.7.7
CVE-2023-51547 Fluent Support – Helpdesk & Customer Support Ticket System SQL Injection

Fluent Support <= 1.7.6 - Authenticated(Administrator+) SQL Injection

CVE-2024-47304 Medium 1.8.1
CVE-2024-47304 Fluent Support – Helpdesk & Customer Support Ticket System SQL Injection

Fluent Support <= 1.8.0 - Authenticated (Subscriber+) SQL Injection

CVE-2024-47302 Medium 1.8.1
CVE-2024-47302 Fluent Support – Helpdesk & Customer Support Ticket System Vulnerability

Fluent Support <= 1.8.0 - Insufficient Authorization on Email Verification

CVE-2025-67926 Medium 1.10.5
CVE-2025-67926 Fluent Support – Helpdesk & Customer Support Ticket System Vulnerability

Fluent Support <= 1.10.4 - Missing Authorization

CVE-2025-57885 Medium 1.9.2
CVE-2025-57885 Fluent Support – Helpdesk & Customer Support Ticket System Cross-Site Request Forgery

Fluent Support <= 1.9.1 - Cross-Site Request Forgery

Coverage Snapshot

What this page helps you verify fast

This hub clusters every indexed record for Fluent Support – Helpdesk & Customer Support Ticket System so operators can confirm whether a disclosed issue maps to the installed slug, version range, and patch path.

Patch Visibility
7 records include a published patch path, leaving 0 with no listed safe release yet.
Severity Mix
0 critical and 2 high severity findings.
Recent CVEs
CVE-2025-67926, CVE-2025-57885 and CVE-2024-13568
Reference Workflow
Jump from the hub into the full report when you need remediation notes, exploit context, CVSS vectors, or source references.
Triage First

Open the records most likely to drive action

These recent records surface the CVE strings, patch cues, and direct report links most operators need first.

Known Vulnerabilities

Reports for Fluent Support – Helpdesk & Customer Support Ticket System

Sorted by latest disclosure date so newly published issues surface first.

Plugin Medium Patched: Yes CVE-2025-67926
CVE-2025-67926: Fluent Support <= 1.10.4 - Missing Authorization

The Fluent Support – Helpdesk & Customer Support Ticket System plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 1.10.4. This makes it possible for authenticated attackers, with Subscrib...

Published
Jan 05, 2026
Patched Release
1.10.5
Affected Versions
Versions up to 1.10.4
Next Step
Update to 1.10.5 or newer if supported.
Open CVE-2025-67926 Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2025-57885
CVE-2025-57885: Fluent Support <= 1.9.1 - Cross-Site Request Forgery

The Fluent Support – Helpdesk & Customer Support Ticket System plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9.1. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthentica...

Published
Aug 22, 2025
Patched Release
1.9.2
Affected Versions
Versions up to 1.9.1
Next Step
Update to 1.9.2 or newer if supported.
Open CVE-2025-57885 Report Open CVE Reference
Plugin High Patched: Yes CVE-2024-13568
CVE-2024-13568: Fluent Support – Helpdesk & Customer Support Ticket System <= 1.8.5 - Unauthenticated Sensitive Information Exposure Through Unprotected Directory

The Fluent Support – Helpdesk & Customer Support Ticket System plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.8.5 via the 'fluent-support' directory. This makes it possible for unauthenticated attackers to extract sens...

Published
Feb 28, 2025
Patched Release
1.8.6
Affected Versions
Versions up to 1.8.5
Next Step
Update to 1.8.6 or newer if supported.
Open CVE-2024-13568 Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2024-47302
CVE-2024-47302: Fluent Support <= 1.8.0 - Insufficient Authorization on Email Verification

The Fluent Support plugin for WordPress is vulnerable to unauthorized email verification due to insufficient validation on the sendSignupEmailVerificationHtml ()function in versions up to, and including, 1.8.0. This makes it possible for unauthenticated attackers to verify emails...

Published
Sep 25, 2024
Patched Release
1.8.1
Affected Versions
Versions up to 1.8.0
Next Step
Update to 1.8.1 or newer if supported.
Open CVE-2024-47302 Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2024-47304
CVE-2024-47304: Fluent Support <= 1.8.0 - Authenticated (Subscriber+) SQL Injection

The Fluent Support plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 1.8.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attack...

Published
Sep 25, 2024
Patched Release
1.8.1
Affected Versions
Versions up to 1.8.0
Next Step
Update to 1.8.1 or newer if supported.
Open CVE-2024-47304 Report Open CVE Reference
Plugin Medium Patched: Yes CVE-2023-51547
CVE-2023-51547: Fluent Support <= 1.7.6 - Authenticated(Administrator+) SQL Injection

The Fluent Support – WordPress Helpdesk and Customer Support Ticket Plugin plugin for WordPress is vulnerable to SQL Injection via an unknown parameter in all versions up to 1.7.7 (exclusive) due to insufficient escaping on the user supplied parameter and lack of sufficient prepa...

Published
Dec 27, 2023
Patched Release
1.7.7
Affected Versions
Versions before 1.7.7
Next Step
Update to 1.7.7 or newer if supported.
Open CVE-2023-51547 Report Open CVE Reference
Plugin High Patched: Yes CVE-2022-2559
CVE-2022-2559: Fluent Support <= 1.5.7 - Authenticated (Administrator+) SQL Injection

The Fluent Support plugin for WordPress is vulnerable to SQL Injection via an unknown parameter in versions up to, and including, 1.5.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible...

Published
Aug 02, 2022
Patched Release
1.5.8
Affected Versions
Versions up to 1.5.7
Next Step
Update to 1.5.8 or newer if supported.
Open CVE-2022-2559 Report Open CVE Reference