Unrated severityNVD Advisory· Published Dec 2, 2014· Updated Jun 17, 2026
CVE-2014-9179
CVE-2014-9179
Description
Cross-site scripting (XSS) vulnerability in the SupportEzzy Ticket System plugin 1.2.5 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the "URL (optional)" field in a new ticket.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:supportezzy_ticket_system_project:supportezzy_ticket_system:1.2.5:*:*:*:*:wordpress:*:*
- Range: =1.2.5
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.