Missing Authorization vulnerability in WPFactory Helpdesk Support Ticket System for WooCommerce support-ticket-system-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Helpdesk Support Ticket System for WooCommerce: from n/a through <= 2.1.2.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| WPFactory | Helpdesk Support Ticket System for WooCommerce | unaffected |
|
No data.
No data.
No data.
Subscriptions
No data.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Wed, 25 Mar 2026 16:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Missing Authorization vulnerability in WPFactory Helpdesk Support Ticket System for WooCommerce support-ticket-system-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Helpdesk Support Ticket System for WooCommerce: from n/a through <= 2.1.2. | |
| Title | WordPress Helpdesk Support Ticket System for WooCommerce plugin <= 2.1.2 - Broken Access Control vulnerability | |
| Weaknesses | CWE-862 | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-03-25T16:14:30.616Z
Reserved: 2026-01-19T16:14:52.937Z
Link: CVE-2026-23977
Vulnrichment
No data.
NVD
Status : Received
Published: 2026-03-25T17:16:36.557
Modified: 2026-03-25T17:16:36.557
Link: CVE-2026-23977
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-03-25T21:34:55Z
Weaknesses